{"version":"1.0","type":"rich","provider_name":"Acast","provider_url":"https://acast.com","height":250,"width":700,"html":"<iframe src=\"https://embed.acast.com/$/66cf6d924960e4eb18d4aa8d/68fb8bfddeee754a72b436d6?\" frameBorder=\"0\" width=\"700\" height=\"250\"></iframe>","title":"7-Zip Vulnerability: New CVEs Allow Remote Code Execution and File Overwrites","thumbnail_width":200,"thumbnail_height":200,"thumbnail_url":"https://open-images.acast.com/shows/66cf6d924960e4eb18d4aa8d/1761315665976-139d76e3-1d23-4a7f-836c-eecd1ea24d12.jpeg?height=200","description":"<p>In this episode of <strong>CVE of the Week</strong>, John and Lou unpack a fresh pair of vulnerabilities affecting one of the most common tools on Windows desktops — <strong>7-Zip</strong>.</p><p><br></p><p>Tracked as <strong>CVE-2025-11001</strong> and <strong>CVE-2025-11002</strong>, these directory traversal flaws allow attackers to craft malicious archives that can <strong>escape the extraction folder</strong>, <strong>overwrite arbitrary files</strong>, and potentially lead to <strong>remote code execution (RCE)</strong>. The hosts discuss how the vulnerabilities impact not just individual users but also automated systems such as <strong>CI/CD pipelines, backup servers, and antivirus scanners</strong> that automatically unpack archives.</p><p><br></p><p>They also cover how this seemingly moderate (CVSS 7.0) issue highlights a deeper problem — <strong>shadow IT and uncontrolled software installation</strong> inside enterprise environments. From patching strategies to user privilege escalation controls, this episode offers real-world guidance for keeping your organization secure.</p><p><br></p><p>⸻</p><p><br></p><p><strong>Key Takeaways</strong></p><p>\t•\tTwo new <strong>7-Zip vulnerabilities</strong> (CVE-2025-11001 &amp; CVE-2025-11002) enable <strong>directory traversal and code execution</strong>.</p><p>\t•\tImpacts <strong>Windows desktops</strong> and <strong>automated extraction workflows</strong> in enterprise systems.</p><p>\t•\tProof-of-concept exploits are already public on GitHub.</p><p>\t•\tThe fix: <strong>Update 7-Zip immediately</strong>, disable automatic extraction of untrusted files, and <strong>audit your endpoint permissions</strong>.</p><p>\t•\tAlso, define a <strong>clear policy for software installation</strong> to minimize risk from unmanaged tools.</p><p><br></p><p>⸻</p><p><br></p><p><strong>Stay Connected</strong></p><p><br></p><p><strong>IT SPARC Cast</strong></p><p>@ITSPARCCast on X</p><p>https://www.linkedin.com/company/sparc-sales/ on LinkedIn</p><p><br></p><p><strong>John Barger</strong></p><p>@john_Video on X</p><p>https://www.linkedin.com/in/johnbarger/ on LinkedIn</p><p><br></p><p><strong>Lou Schmidt</strong></p><p>@loudoggeek on X</p><p>https://www.linkedin.com/in/louis-schmidt-b102446/ on LinkedIn</p>","author_name":"John Barger"}