CVE-2025-55188

Name of the Vulnerable Software and Affected Versions 7-Zip versions prior to 25.01

Description An issue exists in 7-Zip where symbolic links are not always properly handled during the extraction of archives. This flaw allows a remote attacker to use a specially crafted archive to perform arbitrary file writes, which can lead to the overwriting of critical system files and potentially result in remote code execution. This issue specifically affects 7-Zip on Linux-based operating systems by bypassing security restrictions through the incorrect identification of symbolic links before file access.

Recommendations Update to version 25.01.