CVE-2025-6218

Warnung

Medienbericht

EPSS 0.49%
Veröffentlicht 21.06.2025 00:09:02
Zuletzt bearbeitet 10.12.2025 02:00:02
Quelle zdi-disclosures@trendmicro.com
CVE-Watchlists
Login
Unerledigt
Login

RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

The specific flaw exists within the handling of file paths within archive files. A crafted file path can cause the process to traverse to unintended directories. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27198.

Betroffene Produkte Warnungen 1 Metriken 2 CWE 1 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

RARLAB ≫ WinRAR Version < 7.12

Microsoft ≫ Windows Version-

09.12.2025: CISA Known Exploited Vulnerabilities (KEV) Catalog

RARLAB WinRAR Path Traversal Vulnerability

Schwachstelle

RARLAB WinRAR contains a path traversal vulnerability allowing an attacker to execute code in the context of the current user.

Beschreibung

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.49%	0.647

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
zdi-disclosures@trendmicro.com	7.8	1.8	5.9	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

https://www.heise.de/news/WinRAR-Windows-Version-kann-beliebigen-untergeschobenen-Code-ausfuehren-10455413.html

Medienbericht

heise Security

https://www.zerodayinitiative.com/advisories/ZDI-25-409/

Third Party Advisory

VDB Entry

https://www.win-rar.com/singlenewsview.html?&tx_ttnews%5Btt_news%5D=276&cHash=388885bd3908a40726f535c026f94eb6

Release Notes

https://foresiet.com/blog/apt-c-08-winrar-directory-traversal-exploit/

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-6218

https://www.secpod.com/blog/archive-terror-dissecting-the-winrar-cve-2025-6218-exploit-apt-c-08s-stealth-move/

https://nvd.nist.gov/vuln/detail/CVE-2025-6218

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-6218

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-6218

EUVD