CVE-2019-25677

low-risk

Published 2026-04-05

WinRAR 5.61 contains a denial of service vulnerability that allows local attackers to crash the application by placing a malformed winrar.lng language file in the installation directory. Attackers can trigger the crash by opening an archive and pressing the test button, causing an access violation at memory address 004F1DB8 when the application attempts to read invalid data.

Do I need to act?

0.01% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 6.2/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Winrar

Affected Vendors

Rarlab

References (3)

Product https://win-rar.com/predownload.html?spV=true&subD=true&f=wrar561tr.exe

Exploit https://www.exploit-db.com/exploits/46432

Third Party Advisory https://www.vulncheck.com/advisories/winrar-denial-of-service-via-malformed-lang...

/ 100

low-risk

Severity 20/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal