Vulnerability Description
7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area. This is caused by misconfiguration of 7z.dll and a heap overflow. The command runs in a child process under the 7zFM.exe process. NOTE: multiple third parties have reported that no privilege escalation can occur
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| 7-Zip | 7-Zip | <= 21.07 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/166763/7-Zip-21.07-Code-Execution-PrivilegeBroken Link
- https://github.com/kagancapar/CVE-2022-29072ExploitThird Party Advisory
- https://news.ycombinator.com/item?id=31070256Issue TrackingThird Party Advisory
- https://sourceforge.net/p/sevenzip/bugs/2337/ExploitIssue TrackingThird Party Advisory
- https://www.youtube.com/watch?v=sT1cvbu7ZTAExploitThird Party Advisory
- http://packetstormsecurity.com/files/166763/7-Zip-21.07-Code-Execution-PrivilegeBroken Link
- https://github.com/kagancapar/CVE-2022-29072ExploitThird Party Advisory
- https://news.ycombinator.com/item?id=31070256Issue TrackingThird Party Advisory
- https://sourceforge.net/p/sevenzip/bugs/2337/ExploitIssue TrackingThird Party Advisory
- https://www.youtube.com/watch?v=sT1cvbu7ZTAExploitThird Party Advisory
FAQ
What is CVE-2022-29072?
CVE-2022-29072 is a vulnerability with a CVSS score of 7.8 (HIGH). 7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Help>Contents area. This is caused by misconfiguration of 7z.dll a...
How severe is CVE-2022-29072?
CVE-2022-29072 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-29072?
Check the references section above for vendor advisories and patch information. Affected products include: 7-Zip 7-Zip, Microsoft Windows.