Endpoint Vulnerability

7-Zip CVE-2025-0411 Arbitrary Code Execution Vulnerability

Description

7-Zip Mark-of-the-Web bypass allows remote attackers to execute arbitrary code via crafted archive, requiring user interaction, due to failure to propagate Mark-of-the-Web during extraction.

Affected Applications

7-Zip

Version Updates

Date	Version	Status	Detail
2025-02-07	1.00816	New	7-Zip

References

https://www.zerodayinitiative.com/advisories/ZDI-25-045/

ID	6075
Created	Feb 06, 2025
Description Updated	Jan 16, 2026
CVE ID
Risk
Coverage	FortiClient
OS	Windows
Vendor	7-Zip
Patch	auto
Application	7-Zip

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Endpoint Vulnerability

7-Zip CVE-2025-0411 Arbitrary Code Execution Vulnerability

Description

Affected Applications

Version Updates

References

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Endpoint Vulnerability

7-Zip CVE-2025-0411 Arbitrary Code Execution Vulnerability

Description

Affected Applications

Version Updates

References

Threat Intelligence
Center