Stating that its security research expert goodbyeselene found a high-risk vulnerability in WinRAR software with the tracking number CVE-2023-40477, and the vulnerability has been fixed.
Goodbyeselene reported the vulnerability to RARLAB on June 8, 2023, and then officially released the version 6.23 update on August 2, which fixed the above vulnerability.
According to the security bulletin released today, the CVSS score of this vulnerability is 7.8 points (out of 10 points, the higher the score, the greater the destructive power), hackers can use this vulnerability to create a RAR file, once the victim decompresses the file, the system will Infected, hackers can remotely execute arbitrary code.
