2 matches found
CVE-2024-55504
CVE-2024-55504 affects RAR Extractor - Unarchiver Free and Pro (v.6.4.0) on macOS, where the exploit_combined.dylib component enables local code injection that could lead to remote control and access to sensitive data. The issue is rooted in the dylib component and is reflected with a CVSSv3.1 ba...
UnRAR Backlink Vulnerability
UnRAR is a command that decompresses files with rar extension. A security vulnerability exists in UnRAR versions prior to 6.2.3. An attacker exploited the vulnerability to extract files outside the target folder via symbolic links...