← ExploitWatch
HomeExploited Vulnerabilities

CVE-2018-20250 — Actively Exploited: WinRAR (RARLAB)

WinRAR Absolute Path Traversal vulnerability leads to Remote Code Execution

CVE IDCVE-2018-20250
VendorRARLAB
ProductWinRAR
Vulnerability nameWinRAR Absolute Path Traversal Vulnerability
Date added2022-02-15
Remediation due2022-08-15
Known ransomware useKnown
Required actionApply updates per vendor instructions.
DescriptionWinRAR Absolute Path Traversal vulnerability leads to Remote Code Execution
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →