Lucene search

Veracode Vulnerability DatabaseVERACODE:38069

HistoryNov 17, 2022 - 4:52 a.m.

Directory Traversal

2022-11-1704:52:07

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

rarlab

unrar

directory traversal

0.944 High

EPSS

Percentile

99.2%

JSON

rar is vulnerable to directory traversal. The vulnerability exists in RARLAB UnRAR which allows an attacker to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file.

CPENameOperatorVersion
rar:sideq2:5.5.0-1
rar:bustereq2:5.5.0-1
rar:sideq2:5.5.0-1
rar:bustereq2:5.5.0-1
rar:bullseyeeq2:5.5.0-1

Name	Operator	Version
rar:sid	eq	2:5.5.0-1
rar:buster	eq	2:5.5.0-1
rar:sid	eq	2:5.5.0-1
rar:buster	eq	2:5.5.0-1
rar:bullseye	eq	2:5.5.0-1

References

packetstormsecurity.com/files/167989/Zimbra-UnRAR-Path-Traversal.html

blog.sonarsource.com/zimbra-pre-auth-rce-via-unrar-0day/

lists.debian.org/debian-lts-announce/2023/08/msg00022.html

security-tracker.debian.org/tracker/CVE-2022-30333

security.gentoo.org/glsa/202309-04

www.rarlab.com/rar/rarlinux-x32-612.tar.gz

www.rarlab.com/rar_add.htm

0.944 High

EPSS

Percentile

99.2%

JSON

Related for VERACODE:38069