Vulnerability CVE-2022-29072


Published: 2022-04-15

Description:
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area.

See advisories in our WLB2 database:
Topic
Author
Date
High
7-Zip 21.07 Code Execution / Privilege Escalation
Kagan Capar
19.04.2022

Type:

CWE-264

(Permissions, Privileges, and Access Controls)

 References:
https://sourceforge.net/p/sevenzip/bugs/2337/
https://www.youtube.com/watch?v=sT1cvbu7ZTA

Copyright 2024, cxsecurity.com

 

Back to Top