Sign in Subscribe

← All vendors

Vendor

Junrar Project

Products

1

CVEs

1

Across products

1

Status

Private

Products

1

Junrar
1 CVE

Recent CVEs

1

CVE	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2026-41245	Med	0.31	5.9	0.00		Apr 20, 2026	Junrar is an open source java RAR archive library. Prior to version 7.5.10, a path traversal vulnerability in `LocalFolderExtractor` allows an attacker to write arbitrary files with attacker-controlled content into sibling directories when a crafted RAR archive is extracted. Version 7.5.10 fixes the issue.

CVE-2026-41245MedApr 20, 2026
risk 0.31cvss 5.9epss 0.00
Junrar is an open source java RAR archive library. Prior to version 7.5.10, a path traversal vulnerability in `LocalFolderExtractor` allows an attacker to write arbitrary files with attacker-controlled content into sibling directories when a crafted RAR archive is extracted. Version 7.5.10 fixes the issue.