CVE-2026-47224— NanaZip: Heap buffer-overflow read in NanaZip LVM metadata CRC check
Possible ATT&CK Techniques 1AI
T1203 · Exploitation for Client ExecutionGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-47224
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
NanaZip: Heap buffer-overflow read in NanaZip LVM metadata CRC check
Source: NVD (National Vulnerability Database)
Vulnerability Description
NanaZip is the 7-Zip derivative intended for the modern Windows experience. From version 3.0.1000.0 to before version 6.0.1698.0, a heap buffer-overflow read exists in the LVM2 physical-volume metadata parser in NanaZip (via the upstream 7-Zip LvmHandler). The vulnerability is triggered when opening a crafted LVM disk image. This issue has been patched in stable version 6.0.1698.0 and preview version 6.5.1742.0.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
跨界内存读
Source: NVD (National Vulnerability Database)
Vulnerability Title
M2Team NanaZip 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
m2team nanazip是m2team团队开源的一个压缩软件。 M2Team NanaZip 3.0.1000.0版本至6.0.1698.0之前版本存在缓冲区错误漏洞,该漏洞源于LVM2物理卷元数据解析器存在堆缓冲区过度读取,可能导致在打开特制LVM磁盘映像时触发漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-47224
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-47224
请登录查看更多情报信息。
Vendor Advisories for CVE-2026-47224 (1)
Same Patch Batch · M2Team · 2026-06-12 · 3 CVEs total
| CVE-2026-47223 | 5.4 MEDIUM | NanaZip: Heap out-of-bounds read in NanaZip AVB hashtree descriptor parser via 32-bit unsi |
| CVE-2026-47222 | 5.4 MEDIUM | NanaZip: Heap out-of-bounds read in NanaZip AVB property descriptor parser via unsigned in |
IV. Related Vulnerabilities
Same product: NanaZip
- CVE-2026-47223
NanaZip: Heap out-of-bounds read in NanaZip AVB hashtree des - CVE-2026-47222
NanaZip: Heap out-of-bounds read in NanaZip AVB property des - CVE-2026-44215
NanaZip: Heap out-of-bounds write in NanaZip UFS directory p - CVE-2026-42445
NanaZip: Uncontrolled recursion in NanaZip UFS directory tra - CVE-2026-42444
NanaZip: Unbounded resource consumption in NanaZip littlefs
Same vendor: M2Team
- CVE-2026-47223
NanaZip: Heap out-of-bounds read in NanaZip AVB hashtree des - CVE-2026-47222
NanaZip: Heap out-of-bounds read in NanaZip AVB property des - CVE-2026-44215
NanaZip: Heap out-of-bounds write in NanaZip UFS directory p - CVE-2026-42445
NanaZip: Uncontrolled recursion in NanaZip UFS directory tra - CVE-2026-42444
NanaZip: Unbounded resource consumption in NanaZip littlefs
Same weakness: CWE-125
- CVE-2026-9265
Crypt::OpenSSL::PKCS12 versions before 1.96 for Perl permits - CVE-2026-49271
libheif: Wrapped icef compressed-unit range check causes out - CVE-2026-56210
Libaom: libaom: heap-buffer-overflow read via missing bounds - CVE-2026-48138
Out-of-bounds read vulnerability in the NI grpc-device strea - CVE-2025-15661
libssh2 - Heap Buffer Over-read via sftp_symlink() in sftp.c
V. Comments for CVE-2026-47224
No comments yet