Local Code Injection Vulnerability in RAR Extractor - Unarchiver by RARLAB
CVE-2024-55504

5.5MEDIUM

Key Information:

Vendor: RARLAB
Status: RAR Extractor - Unarchiver
Vendor: CVE Published:; 21 January 2025

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A vulnerability identified in RAR Extractor - Unarchiver Free and Pro versions 6.4.0 enables local attackers to inject arbitrary code through the exploit_combined.dylib component. This could potentially allow unauthorized access to sensitive user data and remote control of the affected system, posing significant risks to users on MacOS.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-55504
Created by SyFi

References

https://apps.apple.com/us/app/rar-extractor-unarchiver-pr...

https://github.com/Audit00r/RAR-Extractor-Unarchiver-Pro-...

https://github.com/SyFi/CVE-2024-55504

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 21, 2025
🟡
Public PoC available
Jan 19, 2025
👾
Exploit known to exist
Jan 19, 2025
Vulnerability Reserved
Dec 6, 2024