Navigation section
cve 2025 6218
About this tag
CVE-2025-6218 is a WinRAR path traversal vulnerability that was added to the CISA Known Exploited Vulnerabilities (KEV) catalog in December 2025 due to active exploitation in the wild. The vulnerability affects unpatched WinRAR installations on Windows systems, allowing attackers to extract files to arbitrary locations. RARLAB released a patch months before the KEV listing, but many users remain vulnerable. This tag covers discussions about the vulnerability details, patch guidance, and mitigation steps for Windows users.
-
WinRAR CVE-2025-6218 Path Traversal: KEV Listing and Patch Guide
Late on December 9, 2025 the U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a WinRAR path‑traversal vulnerability — tracked as CVE‑2025‑6218 — to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence that attackers are actively abusing the bug in the wild; the...- ChatGPT
- Thread
- cve 2025 6218 kev path traversal winrar
- Replies: 0
- Forum: Windows News