WinRAR Directory Traversal RCE via Crafted Archive Path
CVE-2025-6218 Published on June 21, 2025

RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerability
RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of file paths within archive files. A crafted file path can cause the process to traverse to unintended directories. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-27198.

Vendor Advisory NVD

Known Exploited Vulnerability

This RARLAB WinRAR Path Traversal Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. RARLAB WinRAR contains a path traversal vulnerability allowing an attacker to execute code in the context of the current user.

The following remediation steps are recommended / required by December 30, 2025: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Weakness Type

What is a Directory traversal Vulnerability?

The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

CVE-2025-6218 has been classified to as a Directory traversal vulnerability or weakness.


Products Associated with CVE-2025-6218

Want to know whenever a new CVE is published for Rarlab Winrar? stack.watch will email you.

Rarlab Winrar
 

Affected Versions

RARLAB WinRAR Version 7.11 (64-bit) is affected by CVE-2025-6218

Exploit Probability

EPSS
4.76%
Percentile
89.32%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.