Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2022-30333

RARLAB | UnRARAdded 2022-08-09Remediation Deadline 2022-08-30Active Ransomware Campaign

RARLAB UnRAR Directory Traversal Vulnerability

RARLAB UnRAR on Linux and UNIX contains a directory traversal vulnerability, allowing an attacker to write to files during an extract (unpack) operation.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-22

CWE-59

References

Vulnerability updated with version 6.12. Accessing link will download update information: https://www.rarlab.com/rar/rarlinux-x32-612.tar.gz