CVE-2024-33899
published 2024-04-29CVE-2024-33899: RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the screen output, or cause a denial of service, via ANSI escape sequences.
PriorityP429high7.1CVSS 3.1
AVNACHPRLUIRSUCHIHAH
EPSS
0.82%
52.5th percentile
RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the screen output, or cause a denial of service, via ANSI escape sequences.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | rar | < rar 2:7.01-1~deb12u1 (bookworm) | rar 2:7.01-1~deb12u1 (bookworm) |
| debian | unrar-nonfree | < rar 2:7.01-1~deb12u1 (bookworm) | rar 2:7.01-1~deb12u1 (bookworm) |
| rarlab | rar | >= 0 < 2:7.01-1~deb12u1 | 2:7.01-1~deb12u1 |
| rarlab | rar | >= 0 < 2:7.00-1 | 2:7.00-1 |
| rarlab | rar | >= 0 < 2:7.00-1 | 2:7.00-1 |
| rarlab | winrar | < 7.00 | 7.00 |
CVSS provenance
nvdv3.17.1HIGHCVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
osv7.5HIGH
vendor_ubuntu7.5HIGH
vendor_debian7.1HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
UnRAR vulnerabilities
vendor_ubuntu·2025-03-12·CVSS 7.5
CVE-2024-33899 [HIGH] UnRAR vulnerabilities
Title: UnRAR vulnerabilities
Summary: Several security issues were fixed in UnRAR.
It was discovered that UnRAR incorrectly handled certain paths. If a user
or automated system were tricked into extracting a specially crafted RAR
archive, a remote attacker could possibly use this issue to write arbitrary
files outside of the targeted directory. (CVE-2022-30333, CVE-2022-48579)
It was discovered that UnRAR incorrectly handled certain recovery volumes.
If a user or automated system were tricked into extracting a specially
crafted RAR archive, a remote attacker could possibly use this issue to
execute arbitrary code. (CVE-2023-40477)
Siddharth Dushantha discovered that UnRAR incorrectly handled ANSI escape
sequences when writing screen output. If a user or automated system were
tricked in
Debian
CVE-2024-33899: rar - RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoo...
vendor_debian·2024·CVSS 7.1
CVE-2024-33899 [HIGH] CVE-2024-33899: rar - RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoo...
RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the screen output, or cause a denial of service, via ANSI escape sequences.
Scope: local
bookworm: resolved (fixed in 2:7.01-1~deb12u1)
bullseye: open
forky: resolved (fixed in 2:7.00-1)
sid: resolved (fixed in 2:7.00-1)
trixie: resolved (fixed in 2:7.00-1)
OSV
unrar-nonfree vulnerabilities
osv·2025-03-12·CVSS 7.5
CVE-2022-30333 [HIGH] unrar-nonfree vulnerabilities
unrar-nonfree vulnerabilities
It was discovered that UnRAR incorrectly handled certain paths. If a user
or automated system were tricked into extracting a specially crafted RAR
archive, a remote attacker could possibly use this issue to write arbitrary
files outside of the targeted directory. (CVE-2022-30333, CVE-2022-48579)
It was discovered that UnRAR incorrectly handled certain recovery volumes.
If a user or automated system were tricked into extracting a specially
crafted RAR archive, a remote attacker could possibly use this issue to
execute arbitrary code. (CVE-2023-40477)
Siddharth Dushantha discovered that UnRAR incorrectly handled ANSI escape
sequences when writing screen output. If a user or automated system were
tricked into processing a specially crafted RAR archive, a remot
GHSA
GHSA-gp37-m2c5-j775: RARLAB WinRAR before 7
ghsa_unreviewed·2024-05-21·CVSS 7.1
CVE-2024-36052 [HIGH] CWE-150 GHSA-gp37-m2c5-j775: RARLAB WinRAR before 7
RARLAB WinRAR before 7.00, on Windows, allows attackers to spoof the screen output via ANSI escape sequences, a different issue than CVE-2024-33899.
GHSA
GHSA-7m59-rfr2-gh4p: RARLAB WinRAR before 7
ghsa_unreviewed·2024-04-29
CVE-2024-33899 [HIGH] CWE-150 GHSA-7m59-rfr2-gh4p: RARLAB WinRAR before 7
RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the screen output, or cause a denial of service, via ANSI escape sequences.
OSV
CVE-2024-33899: RARLAB WinRAR before 7
osv·2024-04-29·CVSS 7.1
CVE-2024-33899 [HIGH] CVE-2024-33899: RARLAB WinRAR before 7
RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the screen output, or cause a denial of service, via ANSI escape sequences.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-04-29
Published