CVE-2022-47111 PUBLISHED

Assigner: mitre
Reserved: 12.12.2022 Published: 19.04.2025 Updated: 19.04.2025

7-Zip 22.01 does not report an error for certain invalid xz files, involving block flags and reserved bits. Some later versions are unaffected.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
CVSS Score: 2.5

Product Status

Vendor 7-Zip
Product 7-Zip
Versions Default: unknown
  • Version 22.01 is affected

References

Problem Types

  • CWE-754 Improper Check for Unusual or Exceptional Conditions CWE