Lucene search
K

29 matches found

OpenVAS
OpenVAS
added 2025/03/13 12:0 a.m.13 views

Ubuntu: Security Advisory (USN-7349-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.98975EPSS
Exploits13References4
Ubuntu
Ubuntu
added 2025/03/12 4:11 p.m.25 views

USN-7349-1: RAR vulnerabilities

It was discovered that RAR incorrectly handled certain paths. If a user or automated system were tricked into extracting a specially crafted RAR archive, a remote attacker could possibly use this issue to write arbitrary files outside of the targeted directory. CVE-2022-30333 It was discovered th...

7.8CVSS7.8AI score0.98975EPSS
Exploits13
Tenable Nessus
Tenable Nessus
added 2025/03/12 12:0 a.m.48 views

Ubuntu 20.04 LTS / 22.04 LTS : UnRAR vulnerabilities (USN-7350-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7350-1 advisory. It was discovered that UnRAR incorrectly handled certain paths. If a user or automated system were tricked into extracting a specially crafte...

7.8CVSS7.5AI score0.98975EPSS
Exploits14References5
OSV
OSV
added 2024/05/03 3:15 a.m.14 views

CVE-2023-40477

RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS7.5AI score
Exploits0References3
NVD
NVD
added 2024/05/03 3:15 a.m.26 views

CVE-2023-40477

RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS8AI score0.1308EPSS
Exploits1References3
CVE
CVE
added 2024/05/03 2:11 a.m.3744 views

CVE-2023-40477

CVE-2023-40477 affects WinRAR (Recovery Volume processing). The issue stems from insufficient validation of user-supplied data during recovery-volume handling, enabling a memory access past the end of an allocated buffer and potentially remote code execution in the context of the target process. ...

7.8CVSS8.1AI score0.1308EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/05/03 2:11 a.m.28 views

CVE-2023-40477 RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability

RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS8.3AI score0.1308EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.29 views

openSUSE: Security Advisory for clamav (SUSE-SU-2023:4415-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.1308EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/01/09 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-6569-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.98975EPSS
Exploits13References4
Ubuntu
Ubuntu
added 2024/01/08 6:5 p.m.104 views

USN-6569-1: libclamunrar vulnerabilities

it was discovered that libclamunrar incorrectly handled directories when extracting RAR archives. A remote attacker could possibly use this issue to overwrite arbitrary files and execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04. CVE-2022-30333 ...

7.8CVSS8.2AI score0.98975EPSS
Exploits13
Tenable Nessus
Tenable Nessus
added 2024/01/08 12:0 a.m.64 views

Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 : libclamunrar vulnerabilities (USN-6569-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 23.04 / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6569-1 advisory. it was discovered that libclamunrar incorrectly handled directories when extracting RAR archives. A remote attacker could...

7.8CVSS8.5AI score0.98975EPSS
Exploits13References3
Tenable Nessus
Tenable Nessus
added 2023/11/15 12:0 a.m.28 views

Debian dla-3653 : libclamunrar - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3653 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3653-1 [email protected] https://www.debian.org/lts/security/...

7.8CVSS8.7AI score0.1308EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/11/13 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2023:4415-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.1308EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/11/11 12:0 a.m.42 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : clamav (SUSE-SU-2023:4415-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:4415-1 advisory. - Updated to version 0.103.11: - CVE-2023-40477: Updated libclamunrar dependency to version 6.2.12...

7.8CVSS7.5AI score0.1308EPSS
Exploits1References4
OSV
OSV
added 2023/11/10 5:15 p.m.6 views

SUSE-SU-2023:4415-1 Security update for clamav

This update for clamav fixes the following issues: - Updated to version 0.103.11: - CVE-2023-40477: Updated libclamunrar dependency to version 6.2.12 bsc1216625...

7.8CVSS7.8AI score0.1308EPSS
Exploits1References3
Trellix
Trellix
added 2023/11/09 12:0 a.m.56 views

CVE-2023-38831: Navigating the Threat Landscape of the Latest Security Vulnerability

CVE-2023-38831: Navigating the Threat Landscape of the Latest Security Vulnerability By Trellix · November 9, 2023 This blog was written by Neeraj Kumar Singh Executive Summary In August 2023, WinRAR released a security patch to address a remote code execution vulnerability in WinRAR's ZIP archiv...

7.8CVSS8.1AI score0.97798EPSS
Exploits49
Tenable Nessus
Tenable Nessus
added 2023/11/01 12:0 a.m.39 views

SUSE SLES12 Security Update : clamav (SUSE-SU-2023:4297-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:4297-1 advisory. - Update to 0.103.10 CVE-2023-40477 CVE-2023-40477 Note that Nessus has not tested for this issue but has instead relied only on the...

7.8CVSS7.9AI score0.1308EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/11/01 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2023:4297-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.2AI score0.1308EPSS
Exploits1References4
OSV
OSV
added 2023/10/31 8:31 a.m.7 views

SUSE-SU-2023:4297-1 Security update for clamav

This update for clamav fixes the following issues: - Updated to version 0.103.11: - CVE-2023-40477: Updated libclamunrar dependency to version 6.2.12 bsc1216625...

7.8CVSS7.8AI score0.1308EPSS
Exploits1References3
HackRead
HackRead
added 2023/09/20 1:10 a.m.67 views

Fake PoC Script Used to Trick Researchers into Downloading VenomRAT

By Waqas New Malware Campaign Targets CVE-2023-40477 Vulnerability in WinRAR - Researchers Advise Users to Update WinRAR and Be Cautious of Clicking on Links. This is a post from HackRead.com Read the original post: Fake PoC Script Used to Trick Researchers into Downloading VenomRAT...

6.8AI score0.1308EPSS
Exploits1
Rows per page
Query Builder