TROYANOSYVIRUS
Voltar para CVEs

CVE-2022-47112

LOW
2.5

Descricao

7-Zip 22.01 does not report an error for certain invalid xz files, involving stream flags and reserved bits. Some later versions are unaffected.

Detalhes CVE

Pontuacao CVSS v3.12.5
SeveridadeLOW
Vetor CVSSCVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
Vetor de ataqueLOCAL
ComplexidadeHIGH
Privilegios necessariosNONE
Interacao do usuarioREQUIRED
Publicado4/19/2025
Ultima modificacao8/18/2025
Fontenvd
Avistamentos honeypot0

Produtos afetados

7-zip:7-zip

Fraquezas (CWE)

CWE-754

Referencias

https://github.com/boofish/semantic-bugs/(cve@mitre.org)

Correlacoes IOC

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.