WID-SEC-W-2023-2093

Affected Products

Exploit Intelligence

• This project is a cybersecurity research and analysis project focused on CVE-2023-38831, a critical WinRAR vulnerability that allows attackers to execute malicious code through specially crafted archive files. The project was conducted in a controlled lab environment for educational and defensive security purposes only. (github-poc-repo)
• This project is a cybersecurity research and analysis project focused on CVE-2023-38831, a critical WinRAR vulnerability that allows attackers to execute malicious code through specially crafted archive files. The project was conducted in a controlled lab environment for educational and defensive security purposes only. (github-poc)
• evil-winrar,CVE-2023-38831漏洞利用和社会工程学攻击框架 (evil-winrar, CVE-2023-38831 Vulnerability Exploitation and Social Engineering Attack Framework) (github-poc-repo)
• RomainBayle08/CVE-2023-38831 (github-poc-repo)
• This is my malware (github-poc-repo)
• PoC - Prueba de Concepto de CVE-2024-4367 en conjunto al CVE-2023-38831 en un solo Script (github-poc-repo)
• Hirusha-N/CVE-2021-34527-CVE-2023-38831-and-CVE-2023-32784 (github-poc-repo)
• khanhtranngoccva/cve-2023-38831-poc (github-poc-repo)
• Remote Access Trojan (RAT) for Windows x64 using a combination of vulnerability CVE-2023-38831 (WinRAR < 6.23 vulnerability) and Shellcode exploitation technique. (github-poc-repo)
• CVE-2023-38831 PoC (Proof Of Concept) (github-poc-repo)

…and 111 more exploits

Timeline

• Aug 17, 2023 CVE Published
• Aug 24, 2023 PoC Published
• Aug 29, 2023 PoC Published
• Sep 23, 2023 PoC Published
• Mar 1, 2024 PoC Published
• Jul 17, 2024 PoC Published
• Dec 19, 2024 PoC Published
• Mar 12, 2025 CVE Updated
• Mar 18, 2025 PoC Published
• May 21, 2025 PoC Published
• Jun 15, 2025 PoC Published
• Aug 10, 2025 PoC Published

References

• https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2093.json advisory
• https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2093 advisory
• https://www.win-rar.com/singlenewsview.html?&L=0&tx_ttnews%5Btt_news%5D=232&cHash=c5bf79590657e32554c6683296a8e8aa url
• https://www.zerodayinitiative.com/advisories/ZDI-23-1152/ url
• https://github.com/advisories/GHSA-w5x7-vwr2-4x27 url
• https://lists.debian.org/debian-lts-announce/2023/08/msg00032.html url
• https://lists.debian.org/debian-lts-announce/2023/08/msg00031.html url
• https://blog.clamav.net/2023/08/clamav-120-feature-version-and-111-102.html url
• https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-50480e7e18 url
• https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2023-2a8f8b189e url
• https://bodhi.fedoraproject.org/updates/FEDORA-2023-4576748282 url
• https://security.gentoo.org/glsa/202309-04 url
• https://lists.suse.com/pipermail/sle-security-updates/2023-October/016944.html url
• https://lists.suse.com/pipermail/sle-security-updates/2023-November/017016.html url
• https://lists.debian.org/debian-lts-announce/2023/11/msg00009.html url
• https://ubuntu.com/security/notices/USN-6569-1 url
• https://ubuntu.com/security/notices/USN-7349-1 url
• https://ubuntu.com/security/notices/USN-7350-1 url