CVE-2023-40477

HIGH

Rarlab Winrar < 6.23 - Improper Array Index Validation

Title source: rule

Description

RARLAB WinRAR Recovery Volume Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of recovery volumes. The issue results from the lack of proper validation of user-supplied data, which can result in a memory access past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-21233.

Exploits (2)

nomisec WORKING POC 24 stars
by wildptr-io · poc
https://github.com/wildptr-io/Winrar-CVE-2023-40477-POC
nomisec SCANNER
by winkler-winsen · poc
https://github.com/winkler-winsen/Scan_WinRAR

References (3)

Scores

CVSS v3 7.8
EPSS 0.9264
EPSS Percentile 99.8%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-129
Status published
Products (1)
rarlab/winrar < 6.23
Published May 03, 2024
Tracked Since Feb 18, 2026