Log inLog in

2 CVEs

rarlab rar Vulnerabilities

CVE security advisories and vulnerability history for rar by rarlab.

2

Total CVEs

Published

0

In CISA KEV

Exploited in the wild

1

Public exploits

With known exploit

5.0

Avg CVSS

2017–2025

Last updated December 5, 2025

Overview

rarlab rar has 2 published CVE records since 2017, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 1 have a known public exploit. The average CVSS base score across scored CVEs is 5.0.

This page aggregates every publicly disclosed vulnerability (CVE) affecting rarlab rar, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Severity and exploitation

How the CVSS severity of rarlab rar's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical0

High0

Medium1

Low0

1 additional CVE has no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

0

None of rarlab rar's CVEs are currently listed in CISA's KEV catalog.

Public exploits

1

One of rarlab rar's CVEs has a known public exploit available.

Affected versions and CVEs

Browse every rarlab rar version named in a CVE, then pick one to see only the CVEs that affect it.

No specific affected versions are recorded for rarlab rar; the CVEs below apply to the product without a version pin.

2 CVEs

Sort

Rarlab RAR App com.rarlab.rar path traversal
CVE-2025-14111
Public exploit
Patch
CWE-22
Medium · CVSS 5.0
EPSS 0.3% (51th pct)2025-12-05
Vulnerability · 2017-06-04
CVE-2014-9983
Unscored
EPSS 0.3% (50th pct)2017-06-04

Common weakness types

The CWE weakness categories most often found in rarlab rar CVEs. Follow any weakness for its full explanation.

CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')1 CVE

Disclosure activity by year

How many rarlab rar CVEs were published each year.

2017

1

2025

1

Other rarlab products

Browse vulnerabilities for other products by rarlab.

winrar29 CVEs unrar15 CVEs far manager1 CVEs RAR App1 CVEs

All rarlab vulnerabilities

Frequently asked questions

Common questions about rarlab rar vulnerabilities.

How many CVEs does rarlab rar have?

rarlab rar has 2 published CVE records since 2017.

How many rarlab rar CVEs are in CISA KEV?

None of rarlab rar's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for rarlab rar vulnerabilities?

Yes — 1 of rarlab rar's CVEs have a known public exploit.

What are the most common weakness types in rarlab rar CVEs?

rarlab rar's CVEs most often map to these CWE weakness types: CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')).

What is the average severity of rarlab rar CVEs?

The average CVSS base score across rarlab rar's scored CVEs is 5.0.

References

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track rarlab rar vulnerabilities

Monitor new rarlab rar vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing