BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Active Exploitation of 7-Zip CVE-2025-11001 ZIP Flaw Alert

Critical Remote Code Execution Vulnerability CVE-2025-11001 in 7-Zip Actively Exploited; Urgent Update to Version 25.00 Recommended

  • A critical vulnerability, CVE-2025-11001, affecting 7-Zip has been actively exploited since its public disclosure.
  • The flaw allows remote code execution via crafted ZIP files manipulating symbolic links, causing directory traversal.
  • 7-Zip version 25.00, released in July 2025, contains fixes for this and another similar vulnerability, CVE-2025-11002.
  • The vulnerability can only be exploited on Windows systems with elevated privileges or developer mode enabled.
  • A public proof-of-concept exploit is available, increasing urgency for users to update software promptly.

A recent security vulnerability in 7-Zip, identified as CVE-2025-11001, has been confirmed to be actively exploited in the wild, according to an advisory released by the United Kingdom‘s NHS England Digital on November 18, 2025. The issue allows remote attackers to execute arbitrary code by exploiting how the software handles symbolic links in ZIP archives, leading to directory traversal and unintended code execution. This flaw holds a CVSS severity score of 7.0.

- Advertisement -

The vulnerability was addressed in the July 2025 release of 7-Zip 25.00. This version also fixes a related security issue, CVE-2025-11002, which similarly permits remote code execution through improper handling of symbolic links introduced in version 21.02. Both vulnerabilities enable attackers to perform actions with the privileges of a service or elevated account.

According to Trend Micro’s Zero Day Initiative (ZDI), the exploit arises when specially crafted ZIP data causes the program to access files outside intended directories. The flaw could allow code execution within the context of a service account. The discovery and reporting of the vulnerability have been credited to Ryota Shiga of GMO Flatt Security Inc. and the company’s AI-based AppSec Auditor, Takumi.

Investigations confirm active exploitation of CVE-2025-11001, but details on the attackers, methods, or affected targets have yet to be disclosed. Security researcher Dominik, known as pacbypass, released a public proof-of-concept (PoC) exploit demonstrating the vulnerability. He noted in a detailed post that the exploit can only succeed on Windows systems when run by an elevated user, service account, or with developer mode enabled.

Users of 7-Zip are strongly advised to upgrade to version 25.00 as soon as possible to mitigate the risk. The PoC exploit is publicly accessible here. Additional technical details and the advisory on CVE-2025-11001 can be found on the ZDI website. The fix history for 7-Zip is available at the official change log.

- Advertisement -

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Cambridge: Ethereum Energy Intensity Low, Overall Use High

Ethereum consumes roughly 7.87 GWh annually, the second-lowest energy intensity per market value among...

Saylor and Back oppose BIP-110 fork over Bitcoin security fears

Michael Saylor and Adam Back have publicly opposed BIP-110, a temporary Bitcoin fork proposal...

China, India groups target Pakistani police in cyber espionage

Suspected China- and India-aligned threat actors targeted Pakistani law enforcement in a sustained cyber...

AMD Stock Dips 10% Amid AI Volatility Ahead of Q3 Earnings

AMD stock fell nearly 10% from $580 on June 30 to roughly $516 by...

Bitcoin Creator Back Warns BIP-110 Data Limit Could Split Network

Adam Back said Bitcoin has "robustly rejected" BIP-110, arguing the proposal conflicts with the...

Must Read

How to Set Up a Simple Bitcoin Tip Jar for Your Site or Stream

QUICK LINKSWhat a tip jar is, in plain wordsWhat you needBuild a payment link that just worksAdd a QR code that actually scansWhere to...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading