WinRAR ZIP Arbitrary Code Execution Vulnerability (CVE-2023-38831) | allinfosecnews.com

Aug. 25, 2023, 2:37 a.m. |

FortiGuard Labs | FortiGuard Center - Threat Signal Report fortiguard.fortinet.com

What is WinRAR?

WinRAR is a popular utility tool for file compression/decompression and archive management.

What is the Attack?

CVE-2023-38831 is an arbitrary code execution vulnerability that affects WinRAR before version 6.23. The vulnerability allows threat actors to create a zip file that contains a folder and a file with the same filename. Opening (some refer to this as "viewing") the file launches a malicious script in the folder.

Why is this Significant?

This is significant because WinRAR is widely …

archive attack code code execution compression cve decompression file filename folder management popular threat threat actors tool utility version vulnerability what is winrar zip

More from fortiguard.fortinet.com / FortiGuard Labs | FortiGuard Center - Threat Signal Report

CrushFTP VFS Sandbox Escape Vulnerability (CVE-2024-4040) 4 hours ago | fortiguard.fortinet.com

attackers attacks cisa cisa known exploited vulnerabilities +27

ArcaneDoor Attack (CVE-2024-20353 and CVE-2024-20359) 6 days, 1 hour ago | fortiguard.fortinet.com

adaptive security advisory april arcanedoor +22

Akira Ransomware Attack (CVE-2023-20269 and CVE-2020-3259) 6 days, 2 hours ago | fortiguard.fortinet.com

access advisory akira akira ransomware +17

PAN-OS Critical Flaw in GlobalProtect Gateway (CVE-2024-3400) 2 weeks, 1 day ago | fortiguard.fortinet.com

advisory attack code code injection +27

XZ Utils Supply Chain Attack (CVE-2024-3094) 3 weeks, 6 days ago | fortiguard.fortinet.com

attack code compression cve +25

Nice Linear eMerge Command Injection Vulnerability (CVE-2019–7256) 1 month ago | fortiguard.fortinet.com

access attacker code code execution +25

Jenkins Arbitrary File Read Vulnerability (CVE-2024-23897) 1 month ago | fortiguard.fortinet.com

access application application developers attackers +31

Kimsuky Malware Attack 1 month ago | fortiguard.fortinet.com

attack cyber entities espionage +15

JetBrains TeamCity Authentication Bypass Vulnerabilities (CVE-2024-27198, CVE-2024-27199) 1 month, 2 weeks ago | fortiguard.fortinet.com

attacker authentication authentication bypass bypass +15

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Information Security Engineer - Vulnerability Management

@ Starling Bank | Southampton, England, United Kingdom

View on infosec-jobs.com

Manager Cybersecurity

@ Sia Partners | Rotterdam, Netherlands

View on infosec-jobs.com

Compliance Analyst

@ SiteMinder | Manila

View on infosec-jobs.com

Information System Security Engineer (ISSE)-Level 3, OS&CI Job #447

@ Allen Integrated Solutions | Chantilly, Virginia, United States

View on infosec-jobs.com

Enterprise Cyber Security Analyst – Advisory and Consulting

@ Ford Motor Company | Mexico City, MEX, Mexico

View on infosec-jobs.com