Executive Summary A critical vulnerability in WinRAR, identified as CVE-2025-8088, was exploited as a zero-day in targeted phishing attacks to deploy RomCom backdoors. This flaw, a directory traversal vulnerability, allows attackers to craft malicious archives that place executable files in Windows Startup folders, enabling remote code execution when the system is restarted. The vulnerability has […]
The post WinRAR CVE-2025-8088: RomCom’s Doorway to Remote Code Execution appeared first on SecPod Blog.