High severity7.5NVD Advisory· Published Sep 3, 2017· Updated Jun 17, 2026
CVE-2017-14120
CVE-2017-14120
Description
unrar 0.0.1 (aka unrar-free or unrar-gpl) suffers from a directory traversal vulnerability for RAR v2 archives: pathnames of the form ../[filename] are unpacked into the upper directory.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: =0.0.1
Patches
Vulnerability mechanics
References
3- www.openwall.com/lists/oss-security/2017/08/20/1nvdMailing ListThird Party Advisory
- bugs.debian.org/874059nvdIssue TrackingThird Party Advisory
- lists.debian.org/debian-lts-announce/2021/02/msg00026.htmlnvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.