Rewterz Threat Advisory –CVE-2022-31746 – Mozilla Firefox for iOS Vulnerability
June 30, 2022Rewterz Threat Advisory –CVE-2022-2226 – Mozilla Thunderbird Vulnerability
June 30, 2022Rewterz Threat Advisory –CVE-2022-31746 – Mozilla Firefox for iOS Vulnerability
June 30, 2022Rewterz Threat Advisory –CVE-2022-2226 – Mozilla Thunderbird Vulnerability
June 30, 2022Severity
High
Analysis Summary
CVE-2022-30333
RARLAB UnRAR could allow a remote attacker to traverse directories on the system, caused by a flaw during an extract (aka unpack) operation. An attacker could use a specially-crafted file containing “dot dot” sequences (/../) to write arbitrary files on the system.
Impact
- InformationTheft
Indicators Of Compromise
CVE
- CVE-2022-30333
Affected Vendors
- Zimbra
Affected Products
RARLAB UnRAR 6.11
Remediation
Upgrade to the latest version of UnRAR, available from the RARLAB Web site.