CNNVD-202512-632 Information
CNNVD ID
CNNVD-202512-632
Related CVE
- CNNVD Published: 2025-12-05
Description (Chinese)
RARLAB RAR App是RARLAB公司的一个压缩、解压缩和文件管理软件。 Rarlab RAR App 7.11 Build 127及之前版本存在路径遍历漏洞,该漏洞源于组件com.rarlab.rar的路径遍历问题,可能导致远程攻击。
Description (English)
RARLAB RAR App is a compression, compression and file management software for RARLAB. Rarlab RAR App 7.11 Build 127 and previous versions have path-to-path loop holes, which stem from the routing problems of component co.rlab.rrr, which could lead to long-range attacks.
Hazard Level
High
Vulnerability Type
路径遍历
Affected Vendor
Rarlab
Published
2025-12-05
Last Modified
2026-02-24
References
https://vuldb.com/?id.334491 https://github.com/Secsys-FDU/AF_CVEs/blob/main/com.rarlab.rar/RAR%20APP%20Arbitrary%20File%20Write%20and%20Read%20Vulnerability.md https://vuldb.com/?ctiid.334491 https://vuldb.com/?submit.697375 https://access.redhat.com/security/cve/cve-2025-14111
Patch
https://www.rarlab.com/download.htm
Share on: