A vulnerability has been found in the popular 7-Zip archiver, which attackers can use to install malware while bypassing the Windows —Mark-of-the-Web protection mechanism. Exploiting the breach will allow conditional cybercriminals to use this vulnerability to trigger remote code execution on an affected system. The developers of 7-Zip have already released the archiver version number 24.09, in which CVE-2025-0411 has been eliminated.

Source: anti-malware.ru