Vulnerabilities > 7 ZIP > 7 ZIP > 18.03

DATE CVE VULNERABILITY TITLE RISK
2023-11-03 CVE-2023-31102 Integer Underflow (Wrap or Wraparound) vulnerability in multiple products
Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.
local
low complexity
7-zip netapp CWE-191
7.8
7.8
2022-04-15 CVE-2022-29072 Out-of-bounds Write vulnerability in 7-Zip
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area.
local
low complexity
7-zip CWE-787
7.8
7.8
2018-05-02 CVE-2018-10115 Use of Uninitialized Resource vulnerability in 7-Zip
Incorrect initialization logic of RAR decoder objects in 7-Zip 18.03 and before can lead to usage of uninitialized memory, allowing remote attackers to cause a denial of service (segmentation fault) or execute arbitrary code via a crafted RAR archive.
network
7-zip CWE-908
6.8
6.8