Directory Traversal Remote Code Execution Weakness in RARLAB WinRAR
CVE-2025-6218
Currently unrated
What is CVE-2025-6218?
RARLAB WinRAR contains a vulnerability that allows remote attackers to execute arbitrary code by exploiting improper handling of file paths within archive files. When a user visits a malicious page or opens a crafted archive, it can lead the application to traverse directories inappropriately. This flaw enables an attacker to execute code within the context of the current user, potentially compromising system security.