CVE-2022-30333 - RARLAB UnRAR Directory Traversal Vulnerability
Project:RARLAB
Product:UnRAR
Date Added:2022-08-09Due Date:2022-08-30
Vulnerability Name
RARLAB UnRAR Directory Traversal Vulnerability
Description
RARLAB UnRAR on Linux and UNIX contains a directory traversal vulnerability, allowing an attacker to write to files during an extract (unpack) operation.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
Vulnerability updated with version 6.12. Accessing link will download update information: https://www.rarlab.com/rar/rarlinux-x32-612.tar.gz
https://nvd.nist.gov/vuln/detail/CVE-2022-30333