CVE-2018-20253

CVE-2018-20253

Vendor Check Point Software Technologies Ltd.
Product WinRAR
Weakness CWE-787
Published February 13, 2019
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

In WinRAR versions prior to and including 5.60, There is an out-of-bounds write vulnerability during parsing of a crafted LHA / LZH archive formats. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Key dates

02Disclosure timeline

February 13, 2019 CVE published
August 5, 2024 Record updated