<ul><li>A vulnerability in the 7-Zip file software allows attackers to bypass the Mark of the Web (MotW) Windows security feature.</li><li>The vulnerability, tracked as CVE-2025-0411, allows attackers to execute arbitrary code by extracting malicious files from nested archives or visiting a malicious page.</li><li>Mark of the Web (MotW) is a Windows security feature that identifies files downloaded from untrusted sources and restricts their execution.</li><li>The vulnerability was fixed in version 24.09 of 7-Zip, and users are advised to update to the latest version.</li></ul>

A 7-Zip bug allows to bypass the Mark of the Web (MotW) feature

Discover more