5 matches found
CVE-2025-33027
In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Bandizip. User interaction is required to exploit this vulnerability in that the target must vis...
CVE-2025-33027
In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Bandizip. User interaction is required to exploit this vulnerability in that the target must vis...
PT-2025-16366 · Bandizip · Bandizip
Name of the Vulnerable Software and Affected Versions: Bandizip versions 7.37 and earlier Description: A Mark-of-the-Web Bypass Vulnerability exists in Bandizip, allowing attackers to bypass the Mark-of-the-Web protection mechanism on affected installations. User interaction is required to exploi...
CVE-2025-33027
In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Bandizip. User interaction is required to exploit this vulnerability in that the target must vis...
CVE-2025-33027
CVE-2025-33027 concerns Bandizip up to version 7.37 where a Mark-of-the-Web bypass exists in the handling of archived files. When extracting crafted archives bearing MoW, Bandizip fails to propagate the marker to extracted files, potentially allowing arbitrary code execution in the current user c...