CVE-2025-50328

Name of the Vulnerable Software and Affected Versions B1 Free Archiver version 1.5.86

Description An issue exists where files extracted from downloaded archives bypass Windows Mark of the Web (MotW) protections. The software fails to propagate the Zone.Identifier alternate data stream—a mechanism used by Windows to identify files originating from the internet—to the extracted files. This allows files to be executed without triggering security prompts or Windows Defender SmartScreen warnings, potentially leading to the execution of untrusted code without standard security restrictions.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.