Multiple vulnerabilities in 7-Zip

Описание

Multiple vulnerabilities were found in 7-Zip. Malicious users can exploit these vulnerabilities to execute arbitrary code.

Below is a complete list of vulnerabilities:

1. Out of bounds memory write vulnerability in SquashFS File Parsing can be exploited to execute arbitrary code.
2. Integer Underflow vulnerability in 7Z File Parsing can be exploited to execute arbitrary code.

Первичный источник обнаружения

• ZDI-23-1165
  ZDI-23-1164
  

Связанные продукты

• 7-Zip
• 7-Zip-(MSI-installer)

Список CVE

• CVE-2023-31102
  unknown
• CVE-2023-40481
  unknown

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com