CVE-2025-6218: RARLAB WinRAR Path Traversal Vulnerability. RARLAB WinRAR

RARLAB WinRAR Path Traversal Vulnerability. RARLAB WinRAR contains a path traversal vulnerability allowing an attacker to execute code in the context of the current user.

• CISA KEV-listed (remediation due 2025-12-30)
• EPSS 5.7% (90.6% percentile)

Detection rules

• WinRAR Creating Files in Startup Locations high

Browse the CVE database

Read the full analysis on IntelFusions