High severity7.5NVD Advisory· Published Jul 17, 2025· Updated May 11, 2026

CVE-2025-53816

Description

7-Zip is a file archiver with a high compression ratio. Zeroes written outside heap buffer in RAR5 handler may lead to memory corruption and denial of service in versions of 7-Zip prior to 25.0.0. Version 25.0.0 contains a fix for the issue.

Affected products

Ipavlov/7 Zipv5
Range: < 25.0.0
7 Zip/7 Zip
cpe:2.3:a:7-zip:7-zip:*:*:*:*:*:*:*:*
Range: <25.00

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

securitylab.github.com/advisories/GHSL-2025-058_7-Zip/nvdExploitThird Party Advisory
www.openwall.com/lists/oss-security/2025/07/18/1nvdExploitMailing List
www.openwall.com/lists/oss-security/2025/07/18/1nvd
lists.debian.org/debian-lts-announce/2026/05/msg00021.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000