VDB
VDE-2024-005
VDE-2024-005
PUBLISHED
CVSS 7.800000190734863 HIGH
Under certain circumstances, opening a specially crafted 7-zip package can exploit an integer underflow vulnerability in 7-zip versions up to and including 22.x This vulnerability allows for a remote code execution, resulting in unauthorized (remote) access to, change of data or disruption of the whole service.
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| FAB (Storage) <=V22.7 | ||
| TruTops Mark <=V6.2 | ||
| TruTops Cell <=V2.31.0 | ||
| TruTops Classic <=V12.1 | ||
| Oseon (Storage) <=V3.2 | ||
| FAB-Boost mixed installation <=V22.7 | ||
| Oseon-Boost mixed installation <=V3.5 | ||
| Boost <=V16.5 |
Timeline
- Jan 23, 2024 CVE Published
- Jun 5, 2025 CVE Updated