Hello everyone !
A high-risk security flaw has been identified in WinRAR version 7.13 (x64) that could let attackers execute malicious code via specially crafted archive files. Systems with this version installed and not updated are at immediate risk. The vendor has issued a fix, but WinRAR does not auto-update, leaving unpatched systems vulnerable.
Vulnerability Impact
Attackers can leverage the flaw to execute arbitrary code, potentially compromising the confidentiality, integrity, and availability of data. This makes timely patching critical, especially in environments with sensitive or business-critical information.
Patch Release Information
Patch ID | Bulletin ID | Description |
350239 | TU-038 | WinRAR (X64) (7.13) |
Why Automating Patching is the Safer Choice
Manual updates across many systems create delays that attackers can exploit. Automated patch management tool such as ManageEngine Patch Manager Plus can instantly detect vulnerable installations, deploy the fix in a single step, and verify installation across all endpoints—minimizing downtime and maximizing security. For more details, check out this blog
Cheers,
The ManageEngine Team.