Security News

CISA Issues Warning on Active Exploitation of UnRAR Software for Linux Systems

2022-08-11 03:56

The U.S. Cybersecurity and Infrastructure Security Agency on Tuesday added a recently disclosed security flaw in the UnRAR utility to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. Tracked as CVE-2022-30333, the issue concerns a path traversal vulnerability in the Unix versions of UnRAR that can be triggered upon extracting a maliciously crafted RAR archive.

#cisa #exploitation #linux #unrar #CVE-2022-30333 #CVE-2022-34713

CISA warns of Windows and UnRAR flaws exploited in the wild

2022-08-09 23:07

The U.S. Cybersecurity and Infrastructure Security Agency has added two more flaws to its catalog of Known Exploited Vulnerabilities, based on evidence of active exploitation. Officially tracked as CVE-2022-34713 and informally referred to as DogWalk, the security flaw in MSDT allows an attacker to place a malicious executable into the Windows Startup folder.

#cisa #unrar #windows #CVE-2022-30333 #CVE-2022-34713

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

CISA Issues Warning on Active Exploitation of UnRAR Software for Linux Systems

CISA warns of Windows and UnRAR flaws exploited in the wild

Security News