VDB

VDE-2024-005

VDE-2024-005 PUBLISHED CVSS 7.800000190734863 HIGH

Under certain circumstances, opening a specially crafted 7-zip package can exploit an integer underflow vulnerability in 7-zip versions up to and including 22.x This vulnerability allows for a remote code execution, resulting in unauthorized (remote) access to, change of data or disruption of the whole service.

Risk Scores

CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
FAB (Storage) <=V22.7
TruTops Mark <=V6.2
TruTops Cell <=V2.31.0
TruTops Classic <=V12.1
Oseon (Storage) <=V3.2
FAB-Boost mixed installation <=V22.7
Oseon-Boost mixed installation <=V3.5
Boost <=V16.5

Timeline

  • Jan 23, 2024 CVE Published
  • Jun 5, 2025 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›