VDB
WID-SEC-W-2025-0129
WID-SEC-W-2025-0129
PUBLISHED
7-Zip ist ein Extraktionsdienstprogramm für Archive, die im ZIP-Format komprimiert sind.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open Source 7-Zip <24.09 | ||
| Open Source 7-Zip 24.09 |
Exploit Intelligence
- Rust Macros No Recoil Guide 🚀 Boost Aim Like a Pro in C and Python (github-poc)
- CVE-2025-0411 7-Zip Mark-of-the-Web Bypass (github-poc)
- cesarbtakeda/7-Zip-CVE-2025-0411-POC (github-poc)
- ishwardeepp/CVE-2025-0411-MoTW-PoC (github-poc)
- 7-Zip Mark-of-the-Web绕过漏洞PoC(CVE-2025-0411) (github-poc)
- This repository contains POC scenarios as part of CVE-2025-0411 MotW bypass. (github-poc)
- https://thehackernews.com/2025/02/russian-cybercrime-groups-exploiting-7.html (circl)
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0129.json (circl)
- https://github.com/dhmosfunk/7-Zip-CVE-2025-0411-POC (circl)
- https://securityonline.info/cve-2025-0411-7-zip-security-vulnerability-enables-code-execution-update-now (circl)
…and 16 more exploits
Timeline
- Jan 20, 2025 CVE Published
- Feb 3, 2025 CVE Updated
- Feb 6, 2025 PoC Published
- Feb 16, 2025 PoC Published
- Mar 26, 2025 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0129.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0129 advisory
- https://www.zerodayinitiative.com/advisories/ZDI-25-045/ url
- https://www.cybersecurity-help.cz/vdb/SB2025012003 url
- https://securityonline.info/cve-2025-0411-7-zip-security-vulnerability-enables-code-execution-update-now url
- https://github.com/dhmosfunk/7-Zip-CVE-2025-0411-POC url
- https://thehackernews.com/2025/02/russian-cybercrime-groups-exploiting-7.html url