Skip to main content

Public advisory of scammers impersonating CSA and the SPF

Stay vigilant. Read the public advisory

Cyber Security Agency of Singapore
  1. Home
  2. Alerts & Advisories
  3. Alerts
  4. High-Severity Vulnerability in WinRAR
Alerts

High-Severity Vulnerability in WinRAR

22 August 2023

RARLAB has released security updates to address a high-severity vulnerability (CVE-2023-40477) in their file archiver utility, WinRAR.

Successful exploitation of the remote code execution vulnerability could allow a remote attacker to perform arbitrary code execution on the target system after opening a specially crafted RAR file.

The vulnerability affects WinRAR versions 6.22 and older.

Users and administrators of affected product versions are advised to upgrade to the latest version immediately.

More information is available here:

https://www.win-rar.com/singlenewsview.html?&L=0

https://www.bleepingcomputer.com/news/security/winrar-flaw-lets-hackers-run-programs-when-you-open-rar-archives/

Back to top