Known vulnerabilities in RARLAB WinRAR

Known vulnerabilities in RARLAB WinRAR

Vendor: RARLAB

Website: https://www.rarlab.com/

Total Security Bulletins: 9

Security bulletins (9)

Secuity bulletin	Severity	Status	Published
SB2025080901: Path traversal leading to RCE in WinRAR	Critical	Patched Exploited	09.08.2025
SB2025062012: Path traversal in RARLAB WinRAR	High	Patched Exploited	20.06.2025
SB2025040328: Mark-of-the-Web bypass in WinRAR	Medium	Patched	03.04.2025
SB2024040145: Multiple vulnerabilities in WinRAR	Medium	Patched	01.04.2024
SB2023082350: File extension spoofing in WinRAR	Critical	Patched Exploited	23.08.2023
SB2023081901: Remote code execution in WinRAR	High	Patched Public exploit	19.08.2023
SB2023020120: Information disclosure in WinRAR	Low	Patched	01.02.2023
SB2021102208: MitM attack in WinRAR	Low	Patched	22.10.2021
SB2019020507: Multiple vulnerabilities in WinRAR	Low	Patched Exploited	05.02.2019