What is CVE-2026-48102?

CVE-2026-48102 is a low-severity vulnerability, classified under Out-of-bounds Read. CVSS score: 3.1/10. Published 2026-06-05.

How severe is CVE-2026-48102?

Low severity. CVSS v3 base score is 3.1 out of 10.

CVE-2026-48102

CVE-2026-48102

7-Zip is a file archiver with a high compression ratio. Versions 9.11 through 26.00 contain a heap out-of-bounds read of up to 3 bytes in the UDF disc image handler's File Identifier Descriptor parser. In CFileId::Parse (CPP/7zip/Archive/U…

Vulnerability class: Buffer Overflow

CVSS v3 metric

CVSS v3 base score 3.1 (Low). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N.

Weakness classification (CWE)

CWE-125 — Out-of-bounds Read

References

security-advisories@github.com

Frequently asked questions

What is CVE-2026-48102?: CVE-2026-48102 is a low-severity vulnerability, classified under Out-of-bounds Read. CVSS score: 3.1/10. Published 2026-06-05.
How severe is CVE-2026-48102?: Low severity. CVSS v3 base score is 3.1 out of 10.