Forwarded from National Cybersecurity Information Sharing and Analysis Center: Cybersecurity Alert NISAC-200-202512-00000198

[Content Description]
Researchers have discovered a Link Following vulnerability (CVE-2025-55188) in 7-Zip.
An unauthenticated attacker could exploit this vulnerability to write arbitrary files. This vulnerability has already been exploited by hackers; please confirm and patch it as soon as possible.

[Affected Platforms]
7-Zip versions below 25.01

[Recommended Action]
Update 7-Zip to version 25.01 or higher.

[References]
1. https://nvd.nist.gov/vuln/detail/CVE-2025-55188