CVE-2025-6218

Name of the Vulnerable Software and Affected Versions WinRAR versions prior to 7.12 Description WinRAR contains a directory traversal vulnerability that allows remote attackers to execute arbitrary code. The vulnerability occurs due to improper handling of file paths within archive files, enabling a crafted file path to traverse to unintended directories. An attacker can leverage this flaw to execute code in the context of the current user. This vulnerability is actively exploited by multiple threat groups, including Paper Werewolf, Bitter, and Gamaredon, in targeted attacks. Reports indicate the exploitation of this vulnerability through phishing campaigns and the deployment of malware, potentially leading to espionage, data theft, and destructive attacks. The vulnerability is tracked as CVE-2025-6218 and has a CVSS score of 7.8. Recommendations Update WinRAR to version 7.12 or later.