CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2025-6218	High	4.7%	RARLABWinRAR	RARLAB WinRAR contains a path traversal vulnerability allowing an attacker to execute code in the context of the current user.	Dec 9, 2025	KEV
CVE-2025-8088	High	6.8%	RARLABWinRAR	RARLAB WinRAR contains a path traversal vulnerability affecting the Windows version of WinRAR. This vulnerability could allow an attacker to execute arbitrary code by crafting malicious archive files.	Aug 12, 2025	KEV
CVE-2023-38831	High	93.8%	RARLABWinRAR	RARLAB WinRAR contains an unspecified vulnerability that allows an attacker to execute code when a user attempts to view a benign file within a ZIP archive.	Aug 24, 2023	KEV
CVE-2022-30333	High	92.8%	RARLABUnRAR	RARLAB UnRAR on Linux and UNIX contains a directory traversal vulnerability, allowing an attacker to write to files during an extract (unpack) operation.	Aug 9, 2022	KEV
CVE-2018-20250	High	93.5%	RARLABWinRAR	WinRAR Absolute Path Traversal vulnerability leads to Remote Code Execution	Feb 15, 2022	KEV

CVE-2025-6218KEV

High

RARLAB WinRAR contains a path traversal vulnerability allowing an attacker to execute code in the context of the current user.

RARLABEPSS 4.7%

CVE-2025-8088KEV

High

RARLAB WinRAR contains a path traversal vulnerability affecting the Windows version of WinRAR. This vulnerability could allow an attacker to execute arbitrary code by crafting malicious archive files.

RARLABEPSS 6.8%

CVE-2023-38831KEV

High

RARLAB WinRAR contains an unspecified vulnerability that allows an attacker to execute code when a user attempts to view a benign file within a ZIP archive.

RARLABEPSS 93.8%

CVE-2022-30333KEV

High

RARLAB UnRAR on Linux and UNIX contains a directory traversal vulnerability, allowing an attacker to write to files during an extract (unpack) operation.

RARLABEPSS 92.8%

CVE-2018-20250KEV

High

WinRAR Absolute Path Traversal vulnerability leads to Remote Code Execution

RARLABEPSS 93.5%