ZDI-24-357: RARLAB WinRAR Mark-Of-The-Web Bypass Vulnerability

This vulnerability allows remote attackers to bypass the Mark-Of-The-Web protection mechanism on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must perform a specific action on a malicious page. The ZDI has assigned a CVSS rating of 4.3. The following CVEs are assigned: CVE-2024-30370.


Leave a Reply

Your email address will not be published. Required fields are marked *