CVE-2024-33899

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-33899
RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the screen output, or cause a denial of service, via ANSI escape sequences.
CVSS

No CVSS.

References
Link Resource
https://sdushantha.medium.com/ansi-escape-injection-vulnerability-in-winrar-a2cbfac4b983 Exploit Third Party Advisory
https://sdushantha.medium.com/ansi-escape-injection-vulnerability-in-winrar-a2cbfac4b983 Exploit Third Party Advisory
https://www.rarlab.com/rarnew.htm Release Notes
https://www.rarlab.com/rarnew.htm Release Notes
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:rarlab:winrar:*:*:*:*:*:*:*:*
OR cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:opengroup:unix:-:*:*:*:*:*:*:*
History

20 Jun 2025, 17:38

Type Values Removed Values Added
First Time Opengroup unix
Linux
Rarlab winrar
Linux linux Kernel
Rarlab
Opengroup
References () https://sdushantha.medium.com/ansi-escape-injection-vulnerability-in-winrar-a2cbfac4b983 - () https://sdushantha.medium.com/ansi-escape-injection-vulnerability-in-winrar-a2cbfac4b983 - Exploit, Third Party Advisory
References () https://www.rarlab.com/rarnew.htm - () https://www.rarlab.com/rarnew.htm - Release Notes
CPE cpe:2.3:a:rarlab:winrar:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:opengroup:unix:-:*:*:*:*:*:*:*

21 May 2024, 17:15

Type Values Removed Values Added
References
  • () https://sdushantha.medium.com/ansi-escape-injection-vulnerability-in-winrar-a2cbfac4b983 -

29 Apr 2024, 00:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-04-29 00:15

Updated : 2025-06-20 17:38

NVD link : CVE-2024-33899

Mitre link : CVE-2024-33899

JSON object : View

Products Affected

linux

  • linux_kernel

rarlab

  • winrar

opengroup

  • unix
CWE

No CWE.