Loading
UnRAR before 6.2.3 allows extraction of files outside of the destination folder via symlink chains.
Use CWE-59, Rarlab vendor hub and Unrar product page to widen CVE-2022-48579 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2022-30333, CVE-2017-12942 and CVE-2017-12941 for nearby disclosures in the same product family.