Medium severity6.2NVD Advisory· Published Apr 5, 2026· Updated Apr 9, 2026

CVE-2019-25677

Description

WinRAR 5.61 contains a denial of service vulnerability that allows local attackers to crash the application by placing a malformed winrar.lng language file in the installation directory. Attackers can trigger the crash by opening an archive and pressing the test button, causing an access violation at memory address 004F1DB8 when the application attempts to read invalid data.

Affected products

Rarlab/Winrar
cpe:2.3:a:rarlab:winrar:*:*:*:*:*:*:x86:*
Range: <=5.61

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.exploit-db.com/exploits/46432nvdExploitVDB Entry
www.vulncheck.com/advisories/winrar-denial-of-service-via-malformed-language-filenvdThird Party Advisory
win-rar.com/predownload.htmlnvdProduct

News mentions

Ghostwriter Targets Ukrainian Government With Geofenced PDF Phishing, Cobalt Strike
The Hacker News · May 14, 2026
FrostyNeighbor: Fresh mischief and digital shenanigans
ESET WeLiveSecurity · May 14, 2026
Operation TrueChaos: 0-Day Exploitation Against Southeast Asian Government Targets
Check Point Research · Mar 31, 2026

cvss	0.403
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000