← Back to CVEs
CVE-2022-47112
LOW2.5
Description
7-Zip 22.01 does not report an error for certain invalid xz files, involving stream flags and reserved bits. Some later versions are unaffected.
CVE Details
CVSS v3.1 Score2.5
SeverityLOW
CVSS VectorCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
Attack VectorLOCAL
ComplexityHIGH
Privileges RequiredNONE
User InteractionREQUIRED
Published4/19/2025
Last Modified8/18/2025
Sourcenvd
Honeypot Sightings0
Affected Products
7-zip:7-zip
Weaknesses (CWE)
CWE-754
References
https://github.com/boofish/semantic-bugs/(cve@mitre.org)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.