CVE-2026-48104 | mcmilk 7-Zip up to 26.00 SquashFS 7z.dll Open uninitialized resource (GHSL-2026-115)

A vulnerability marked as critical has been reported in mcmilk 7-Zip up to 26.00. Affected is the function Open in the library 7z.dll of the component SquashFS Handler. The manipulation leads to uninitialized resource.

This vulnerability is traded as CVE-2026-48104. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More