Initiatives for
As the national authority for Cybersecurity the CCB has developed several initiatives for specific publics which are presented here.
Warning: High-Severity vulnerability in WinRAR is exploited in the wild, Patch Immediately!
Image
Published : 11/08/2025
- Last update: 11/08/2025
- Affected software:
→ WinRAR < 7.13- Type: CWE-35 – Path Traversal
- CVE/CVSS
→ CVE-2025-8088: CVSS 8.4 (CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)
Sources
https://nvd.nist.gov/vuln/detail/CVE-2025-8088
Risks
WinRAR is a widely used file archiving utility that enables users to compress, extract, and manage archive files such as .rar and .zip formats across Windows systems. CVE-2025-8088 is a high-severity vulnerability that allows attackers to execute arbitrary code by crafting malicious archive files. This flaw has been actively exploited in phishing campaigns, making it a serious threat. Successful exploitation could lead to full system compromise, severely impacting the confidentiality, integrity, and availability of affected systems.
Description
CVE-2025-8088 is a path traversal vulnerability affecting the Windows version of WinRAR. By exploiting this flaw, attackers can craft malicious archive files that, when extracted, place executables into sensitive autorun directories. This enables the execution of arbitrary code upon system startup, potentially allowing attackers to gain persistent access and compromise system integrity without user awareness.
Recommended Actions
Patch
The Centre for Cybersecurity Belgium strongly recommends installing updates for vulnerable devices with the highest priority after thorough testing.
Monitor/Detect
The CCB recommends organizations upscale monitoring and detection capabilities to identify any related suspicious activity and ensure a swift response in case of an intrusion.
In case of an intrusion, you can report an incident via https://ccb.belgium.be/en/cert/report-incident.
While patching appliances or software to the newest version may protect against future exploitation, it does not remediate historic compromise.