CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2024-36052: RARLAB WinRAR before 7.00, on Windows, allows attackers to spoof the screen output via ANSI escape sequences, a different issue than CVE-2024-33899.
Description
RARLAB WinRAR before 7.00, on Windows, allows attackers to spoof the screen output via ANSI escape sequences, a different issue than CVE-2024-33899.
Classification
CVE ID: CVE-2024-36052
Affected Products
Vendor: n/a
Product: n/a
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 11.98% (scored less or equal to compared to others)
EPSS Date: 2025-03-14 (when was this score calculated)
References
https://www.rarlab.com/rarnew.htmhttps://sdushantha.medium.com/ansi-escape-injection-vulnerability-in-winrar-a2cbfac4b983