cve/CVE-2022-48579.md at main - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-05 10:17:57 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

675 B

Raw Permalink Blame History

CVE-2022-48579

Description

UnRAR before 6.2.3 allows extraction of files outside of the destination folder via symlink chains.

POC

Reference

2ecab6bb5a (diff-ca3086f578522062d7e390ed2cd7e10f646378a8b8cbf287a6e4db5966df68ee)

Github

No PoCs found on GitHub currently.