CVE-2018-20252

moderate-risk

Published 2019-02-05

In WinRAR versions prior to and including 5.60, there is an out-of-bounds write vulnerability during parsing of crafted ACE and RAR archive formats. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Do I need to act?

0.73% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.8/10 High

LOCAL / LOW complexity

Affected Products (1)

Winrar

Affected Vendors

Rarlab

References (6)

Third Party Advisory http://www.securityfocus.com/bid/106948

Exploit https://research.checkpoint.com/extracting-code-execution-from-winrar/

Release Notes https://www.win-rar.com/whatsnew.html

Third Party Advisory http://www.securityfocus.com/bid/106948

Exploit https://research.checkpoint.com/extracting-code-execution-from-winrar/

Release Notes https://www.win-rar.com/whatsnew.html

/ 100

moderate-risk

Severity 24/34 · High

Exploitability 2/34 · Minimal

Exposure 5/34 · Minimal