{"uuid": "a0ebf759-102b-44b9-ba87-19e27f5a8ed2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48095", "type": "seen", "source": "https://infosec.exchange/users/beyondmachines1/statuses/116651148380377538", "content": "Critical 7-Zip Vulnerability Allows Remote Code Execution via NTFS Handler\n7-Zip version 26.00 and earlier contain a critical heap buffer overflow (CVE-2026-48095) in the NTFS handler that allows attackers to execute arbitrary code via a crafted archive. The flaw is extension-agnostic and can be triggered simply by opening a malicious file.\n**If you use 7-Zip, update to version 26.01 or later immediately. Versions 26.00 and earlier let attackers take over your system just by opening a malicious archive. Until you've updated, do not open any archive or disk image files from untrusted or unexpected sources, regardless of the file extension.**#cybersecurity #infosec #advisory #vulnerabilityhttps://beyondmachines.net/event_details/critical-7-zip-vulnerability-allows-remote-code-execution-via-ntfs-handler-2-b-s-s-0/gD2P6Ple2L", "creation_timestamp": "2026-05-28T12:45:50.503425Z"}