Main Vulnerability Database Exploits ID:8214 - Exploit for Path traversal in UnRar - CVE-2022-30333

ID:8214 - Exploit for Path traversal in UnRar - CVE-2022-30333

Published: August 4, 2022

Vulnerability identifier: #VU62908

Vulnerability risk: Low

CVE-ID: CVE-2022-30333

CWE-ID: CWE-22

Exploitation vector: Remote access

Vulnerable software:
UnRar

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/linux/http/zimbra_unrar_cve_2022_30333

Vulnerability description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences when extracting files from archive. A remote attacker can create a specially crafted archive and overwrite arbitrary files on the system with privileges of the current user.

The vulnerability affects Linux and UNIX systems.

Remediation

Install update from vendor's website.

ID:8214 - Exploit for Path traversal in UnRar - CVE-2022-30333

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human