IT之家 10 月 11 日消息，开源压缩软件 7-Zip 被发现存在两项高危安全漏洞，攻击者可能利用该漏洞远程执行任意代码。研究人员建议所有用户立即更新至最新版本 25.00，以避免潜在风险。 根据通报资料，这两项漏洞编号为 CVE-2025-11001 和 CVE-2025-11002，影响所有旧版 ...

A security vulnerability in 7-Zip allows the mark-of-the-web protection mechanism to be bypassed and code to be executed. An update is available. A security vulnerability in the popular archive ...

Zero Day Initiative（ZDI）近日披露了开源压缩工具 7-Zip 中两处高危漏洞的技术细节，攻击者可诱骗用户打开特制 ZIP 文件实现任意代码执行。目前这两个漏洞已在 7-Zip 25.00 版本中完成修复。 漏洞技术分析 根据 ZDI 发布的公告："该漏洞允许远程攻击者在受影响的 7-Zip ...

If you use 7-Zip to handle your ZIP files, it’s time to update right away. Two serious security flaws discovered by Trend Micro’s Zero Day Initiative (ZDI) can let attackers run code on your computer ...

A fake 7-Zip website is distributing a trojanized installer of the popular archiving tool that turns the user's computer into a residential proxy node. A 7-Zip vulnerability allowing attackers to ...

Two newly disclosed vulnerabilities in 7-Zip could allow attackers to execute arbitrary code by tricking users into opening a malicious ZIP archive. The issues, reported October 7 by Trend Micro’s ...

Earlier this week, security firm Trend Micro posted a security advisory (spotted by BleepingComputer) about a big vulnerability in 7-Zip, a popular file archiving utility app that’s used by millions ...