Lucene search

CVE-2023-38831

🗓️ 23 Aug 2023 00:00:00Reported by AttackerKBType

RARLAB WinRAR 6.23 ZIP archive arbitrary code execution

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 116
The Hacker News	UAC-0099 Using WinRAR Exploit to Target Ukrainian Firms with LONEPAGE Malware	22 Dec 202307:46	–	thn
The Hacker News	Operation RusticWeb: Rust-Based Malware Targets Indian Government Entities	22 Dec 202313:19	–	thn
The Hacker News	Hacktivists Exploits WinRAR Vulnerability in Attacks Against Russia and Belarus	3 Sep 202413:29	–	thn
The Hacker News	Google TAG Detects State-Backed Threat Actors Exploiting WinRAR Flaw	19 Oct 202304:02	–	thn
The Hacker News	SideCopy Exploiting WinRAR Flaw in Attacks Targeting Indian Government Entities	7 Nov 202308:59	–	thn
The Hacker News	Cloudflare Warns of India-Linked Hackers Targeting South and East Asian Entities	26 Sep 202406:18	–	thn
The Hacker News	APT-K-47 Uses Hajj-Themed Lures to Deliver Advanced Asyncshell Malware	22 Nov 202416:59	–	thn
The Hacker News	Experts Uncover DarkCasino: New Emerging APT Threat Exploiting WinRAR Flaw	16 Nov 202313:51	–	thn
The Hacker News	Konni Group Using Russian-Language Malicious Word Docs in Latest Attacks	23 Nov 202314:46	–	thn
The Hacker News	FlyingYeti Exploits WinRAR Vulnerability to Deliver COOKBOX Malware in Ukraine	30 May 202416:37	–	thn

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
group-ib	www.group-ib.com/blog/cve-2023-38831-winrar-zero-day/
bleepingcomputer	www.bleepingcomputer.com/news/security/winrar-zero-day-exploited-since-april-to-hack-trading-accounts/
news	www.news.ycombinator.com/item
packetstormsecurity	www.packetstormsecurity.com/files/174573/WinRAR-Remote-Code-Execution.html
blog	www.blog.google/threat-analysis-group/government-backed-actors-exploiting-winrar-vulnerability/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

23 Aug 2023 00:00Current

8High risk

Vulners AI Score8

CVSS37.8

EPSS0.93714