Rarlab Winrar vulnerabilities

CVE-2019-25677 [MEDIUM] CWE-379 CVE-2019-25677: WinRAR 5.61 contains a denial of service vulnerability that allows local attackers to crash the appl WinRAR 5.61 contains a denial of service vulnerability that allows local attackers to crash the application by placing a malformed winrar.lng language file in the installation directory. Attackers can trigger the crash by opening an archive and pressing the test button, causing an access violation at memory address 004F1DB8 when the application atte

CVE-2025-52331 [MEDIUM] CWE-79 CVE-2025-52331: Cross-site scripting (XSS) vulnerability in the generate report functionality in Rarlab WinRAR 7.11, Cross-site scripting (XSS) vulnerability in the generate report functionality in Rarlab WinRAR 7.11, allows attackers to disclose user information such as the computer username, generated report directory, and IP address. The generate report command includes archived file names without validation in the HTML report, which allows potentially malicious

CVE-2025-8088 [HIGH] CWE-35 CVE-2025-8088: A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to execu A path traversal vulnerability affecting the Windows version of WinRAR allows the attackers to execute arbitrary code by crafting malicious archive files. This vulnerability was exploited in the wild and was discovered by Anton Cherepanov, Peter Košinár, and Peter Strýček from ESET.

CVE-2014-125119 [HIGH] CWE-20 CVE-2014-125119: A filename spoofing vulnerability exists in WinRAR when opening specially crafted ZIP archives. The A filename spoofing vulnerability exists in WinRAR when opening specially crafted ZIP archives. The issue arises due to inconsistencies between the Central Directory and Local File Header entries in ZIP files. When viewed in WinRAR, the file name from the Central Directory is displayed to the user, while the file from the Local File Header is extracte

CVE-2025-6218 [HIGH] CWE-22 CVE-2025-6218: RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows rem RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the han

CVE-2025-31334 [MEDIUM] CWE-356 CVE-2025-31334: Issue that bypasses the "Mark of the Web" security warning function for files when opening a symboli Issue that bypasses the "Mark of the Web" security warning function for files when opening a symbolic link that points to an executable file exists in WinRAR versions prior to 7.11. If a symbolic link specially crafted by an attacker is opened on the affected product, arbitrary code may be executed.

CVE-2024-36052 [HIGH] CVE-2024-36052: RARLAB WinRAR before 7.00, on Windows, allows attackers to spoof the screen output via ANSI escape s RARLAB WinRAR before 7.00, on Windows, allows attackers to spoof the screen output via ANSI escape sequences, a different issue than CVE-2024-33899.

CVE-2023-40477 [HIGH] CWE-129 CVE-2023-40477: RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The s

CVE-2024-33899 [HIGH] CWE-150 CVE-2024-33899: RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the screen output, RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the screen output, or cause a denial of service, via ANSI escape sequences.

CVE-2024-30370 [MEDIUM] CWE-693 CVE-2024-30370: RARLAB WinRAR Mark-Of-The-Web Bypass Vulnerability. This vulnerability allows remote attackers to by RARLAB WinRAR Mark-Of-The-Web Bypass Vulnerability. This vulnerability allows remote attackers to bypass the Mark-Of-The-Web protection mechanism on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must perform a specific action on a malicious page. The specific flaw exists withi

CVE-2023-38831 [HIGH] CWE-345 CVE-2023-38831: RARLAB WinRAR before 6.23 allows attackers to execute arbitrary code when a user attempts to view a RARLAB WinRAR before 6.23 allows attackers to execute arbitrary code when a user attempts to view a benign file within a ZIP archive. The issue occurs because a ZIP archive may include a benign file (such as an ordinary .JPG file) and also a folder that has the same name as the benign file, and the contents of the folder (which may include executable c

CVE-2022-43650 [HIGH] CWE-125 CVE-2022-43650: This vulnerability allows remote attackers to disclose sensitive information on affected installatio This vulnerability allows remote attackers to disclose sensitive information on affected installations of RARLAB WinRAR 6.11.0.0. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ZIP files. Crafted data in a ZIP file can tr

CVE-2018-20253 [HIGH] CWE-787 CVE-2018-20253: In WinRAR versions prior to and including 5.60, There is an out-of-bounds write vulnerability during In WinRAR versions prior to and including 5.60, There is an out-of-bounds write vulnerability during parsing of a crafted LHA / LZH archive formats. Successful exploitation could lead to arbitrary code execution in the context of the current user.

CVE-2018-20252 [HIGH] CWE-787 CVE-2018-20252: In WinRAR versions prior to and including 5.60, there is an out-of-bounds write vulnerability during In WinRAR versions prior to and including 5.60, there is an out-of-bounds write vulnerability during parsing of crafted ACE and RAR archive formats. Successful exploitation could lead to arbitrary code execution in the context of the current user.

CVE-2018-20250 [HIGH] CWE-36 CVE-2018-20250: In WinRAR versions prior to and including 5.61, There is path traversal vulnerability when crafting In WinRAR versions prior to and including 5.61, There is path traversal vulnerability when crafting the filename field of the ACE format (in UNACEV2.dll). When the filename field is manipulated with specific patterns, the destination (extraction) folder is ignored, thus treating the filename as an absolute path.

CVE-2018-20251 [MEDIUM] CWE-693 CVE-2018-20251: In WinRAR versions prior to and including 5.61, there is path traversal vulnerability when crafting In WinRAR versions prior to and including 5.61, there is path traversal vulnerability when crafting the filename field of the ACE format. The UNACE module (UNACEV2.dll) creates files and folders as written in the filename field even when WinRAR validator noticed the traversal attempt and requestd to abort the extraction process. the operation is canc

CVE-2015-5663 [HIGH] CWE-264 CVE-2015-5663: The file-execution functionality in WinRAR before 5.30 beta 5 allows local users to gain privileges The file-execution functionality in WinRAR before 5.30 beta 5 allows local users to gain privileges via a Trojan horse file with a name similar to an extensionless filename that was selected by the user.

CVE-2008-7144 [CRITICAL] CVE-2008-7144: Multiple unspecified vulnerabilities in RARLAB WinRAR before 3.71 have unknown impact and attack vec Multiple unspecified vulnerabilities in RARLAB WinRAR before 3.71 have unknown impact and attack vectors related to crafted (1) ACE, (2) ARJ, (3) BZ2, (4) CAB, (5) GZ, (6) LHA, (7) RAR, (8) TAR, or (9) ZIP files, as demonstrated by the OUSPG PROTOS GENOME test suite for Archive Formats.

CVE-2006-3912 [LOW] CWE-119 CVE-2006-3912: Stack-based buffer overflow in the SFX module in WinRAR before 3.60 beta 8 has unspecified vectors a Stack-based buffer overflow in the SFX module in WinRAR before 3.60 beta 8 has unspecified vectors and impact.

CVE-2006-3845 [CRITICAL] CVE-2006-3845: Stack-based buffer overflow in lzh.fmt in WinRAR 3.00 through 3.60 beta 6 allows remote attackers to Stack-based buffer overflow in lzh.fmt in WinRAR 3.00 through 3.60 beta 6 allows remote attackers to execute arbitrary code via a long filename in a LHA archive.