cve 2025 11001

CVE-2025-11001 is a critical vulnerability in 7-Zip that allows crafted ZIP archives to exploit symbolic links, escaping their extraction folder and overwriting files in arbitrary locations. When chained or used in environments that process archives automatically, this can lead to arbitrary code execution. Users should update to 7-Zip 25.01 (or at minimum 25.00) immediately to close the gap. This tag covers discussions and updates related to this specific security flaw, including its impact, patching, and mitigation strategies for Windows users.