WinRar – TheCyberThrone

CISA adds WinRAR and Microsoft vulnerabilities to KEV catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added new Microsoft and WinRAR vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog due to evidence of active exploitation. This…

PravinKarthik August 14, 2025

CVE-2025-8088 WinRAR Zero-Day Vulnerability

What is CVE-2025-8088? CVE-2025-8088 refers to a critical zero-day vulnerability in the Windows version of WinRAR—a widely used file archive utility. The flaw was actively exploited before a fix was…

PravinKarthik August 11, 2025

CVE-2025-6218 WinRAR Directory Traversal Vulnerability

🔍 Overview CVE-2025-6218 is a directory traversal vulnerability discovered in WinRAR, the widely used file archiving tool for Windows. The flaw allows attackers to craft malicious archive files (e.g., .rar,…

PravinKarthik June 30, 2025

UAC-0099 targets Ukraine with CVE-2023-38831

A threat actor goes by the name UAC-0099 targeting Ukraine by exploiting a high severity vulnerability in WinRAR to deliver the LONEPAGE malware. UAC-0099 targeting Ukraine since 2022, it was…

PravinKarthik December 26, 2023

WinRAR Vulnerability CVE-2023-38831 Surge in exploitation

Google TAG has come up with warnings to users about a vulnerability in WinRAR that’s being actively exploited by hacking groups, including allegedly state-sponsored actors. Threat groups are leveraging a…

PravinKarthik October 19, 2023

WinRaR Zeroday CVE-2023-38831 Exploited

Threat actors are targeting users in online cryptocurrency trading forums via a now-patched bug in the popular WinRAR file compression and archiving utility. The vulnerability tracked as CVE-2023-38831 allowed the…

PravinKarthik August 24, 2023

WinRAR fixes High Severity RCE Vulnerability

WinRAR has fixed a high-severity vulnerability, tracked as CVE-2023-40477 with a CVSS score 7.8, that can allow remote execution of arbitrary code on a computer by opening a crafted RAR…

PravinKarthik August 19, 2023

WinRar Bug to be Worried 🐞

A new weakness has been disclosed in the WinRAR archiver utility for Windows that could be abused by a remote attacker to execute arbitrary code on targeted systems. Tracked as…

PravinKarthik October 21, 2021