virus logo Endpoint Vulnerability

7-Zip CVE-2023-40481 Remote Code Execution Vulnerability

description-logoDescription

Out-of-bounds write in 7-Zip 22.01's SquashFS parser allows remote code execution when a user opens a malicious file.

affected-products-logoAffected Applications

7-Zip

Version Updates

Date Version Status Detail
2025-01-15 1.00803
Modified
 7-Zip

References

https://www.zerodayinitiative.com/advisories/ZDI-23-1164/
ID 4745
Created Jan 27, 2023
Description
Updated		 Jan 16, 2026
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor 7-Zip
Patch auto
Application 7-Zip