Rarlabs Уязвимости

Временная шкала

Тип

File Compression Software	11

Продукт

RarLabs WinRar	9
RARLabs WinRAR	2

Устранение последствий

Official Fix	9
Temporary Fix	0
Workaround	0
Unavailable	1
Not Defined	1

Эксплуатационная пригодность

High	0
Functional	0
Proof-of-Concept	7
Unproven	0
Not Defined	4

Вектор доступа

Not Defined	0
Physical	0
Local	1
Adjacent	0
Network	10

Аутентификация

Not Defined	0
High	0
Low	1
None	10

Взаимодействие с пользователем

Not Defined	0
Required	2
None	9

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	3
≤7	2
≤8	5
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	1
≤5	3
≤6	1
≤7	6
≤8	0
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	0
≤4	1
≤5	0
≤6	3
≤7	2
≤8	5
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Поставщик

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Эксплойт 0-дня

<1k	1
<2k	3
<5k	0
<10k	2
<25k	3
<50k	2
<100k	0
≥100k	0

Эксплойт сегодня

<1k	10
<2k	1
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Объем рынка эксплойтов

🔴 CTI Деятельность

Affected Products (2): WinRAR (2), WinRar (9)

Опубликовано	Base	Temp	Уязвимости	Prod	Э�	Rem	EPSS	CTI	CVE
02.04.2024	6.3	6.3	RARLabs WinRAR Remote Code Execution	File Compression Software	Not Defined	Not Defined	0.00046	0.04	CVE-2024-30370
23.08.2023	6.3	5.7	RARLabs WinRAR ZIP Archive Remote Code Execution	File Compression Software	Proof-of-Concept	Official Fix	0.44373	0.22	CVE-2023-38831
23.03.2014	5.3	4.7	RarLabs WinRar Filename слабая аутентификация	File Compression Software	Proof-of-Concept	Unavailable	0.00000	0.00
08.02.2007	7.3	6.4	RarLabs WinRar RAR Archive unrar повреждение памяти	File Compression Software	Proof-of-Concept	Official Fix	0.08551	0.00	CVE-2007-0855
19.07.2006	7.3	6.4	RarLabs WinRar LHA Archive повреждение памяти	File Compression Software	Proof-of-Concept	Official Fix	0.15149	0.00	CVE-2006-3845
11.10.2005	7.3	7.0	RarLabs WinRar ACE Archive UNACEV2.DLL повреждение памяти	File Compression Software	Not Defined	Official Fix	0.09129	0.00	CVE-2005-3262
11.10.2005	7.3	7.0	RarLabs WinRar UUE/XXE File Format String	File Compression Software	Not Defined	Official Fix	0.09129	0.02	CVE-2005-3262
22.12.2004	7.3	6.9	RarLabs WinRar Archive File Delete повреждение памяти	File Compression Software	Proof-of-Concept	Official Fix	0.02726	0.00	CVE-2004-1254
02.11.2004	4.0	3.8	RarLabs WinRar Repair Archive Feature отказ в обслуживании	File Compression Software	Not Defined	Official Fix	0.00829	0.00	CVE-2004-1495
19.09.2003	5.3	5.0	RarLabs WinRar Directory раскрытие информации	File Compression Software	Proof-of-Concept	Official Fix	0.00179	0.00	CVE-2003-0282

1 больше записей не показано

🔒 Login Required

You need to signup and login to see more of the remaining 1 results.

◂ ПредыдущийОбзорДалее ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!