Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/04/17 2:19 a.m.16 views

CVE-2025-33027

In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Bandizip. User interaction is required to exploit this vulnerability in that the target must vis...

7.8CVSS7.1AI score0.00248EPSS
Exploits0References1
NVD
NVD
added 2025/04/15 6:15 p.m.30 views

CVE-2025-33027

In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Bandizip. User interaction is required to exploit this vulnerability in that the target must vis...

7.8CVSS0.00248EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/15 12:0 a.m.6 views

PT-2025-16366 · Bandizip · Bandizip

Name of the Vulnerable Software and Affected Versions: Bandizip versions 7.37 and earlier Description: A Mark-of-the-Web Bypass Vulnerability exists in Bandizip, allowing attackers to bypass the Mark-of-the-Web protection mechanism on affected installations. User interaction is required to exploi...

7.8CVSS6.7AI score0.00248EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2025/04/15 12:0 a.m.7 views

CVE-2025-33027

In Bandisoft Bandizip through 7.37, there is a Mark-of-the-Web Bypass Vulnerability. This vulnerability allows attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of Bandizip. User interaction is required to exploit this vulnerability in that the target must vis...

6.1CVSS6.8AI score0.00248EPSS
Exploits0References2
CVE
CVE
added 2025/04/15 12:0 a.m.86 views

CVE-2025-33027

CVE-2025-33027 concerns Bandizip up to version 7.37 where a Mark-of-the-Web bypass exists in the handling of archived files. When extracting crafted archives bearing MoW, Bandizip fails to propagate the marker to extracted files, potentially allowing arbitrary code execution in the current user c...

7.8CVSS6.8AI score0.00248EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder