一、漏洞簡述

CISA 於 8/11 至 8/17 在 Known Exploited Vulnerabilities Catalog (KEV) 中發布 5 個已遭駭客利用之漏洞，請所有使用相關產品或負責維運的同仁務必注意。

CVE-2007-0671
CVE-2013-3893
CVE-2025-8088
CVE-2025-8875
CVE-2025-8876

---

二、設備／版本影響

N-able｜N-Central
RARLAB｜WinRAR
Microsoft｜Office
Microsoft｜Internet Explorer

---

三、建議處置

修補說明請參考以下官方連結：

N-able｜N-Central
https://status.n-able.com/2025/08/13/announcing-the-ga-of-n-central-2025-3-1/

RARLAB｜WinRAR
https://www.win-rar.com/singlenewsview.html?&L=0&tx_ttnews%5Btt_news%5D=283&cHash=a64b4a8f662d3639dec8d65f47bc93c5

Microsoft｜Office
https://learn.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-015

Microsoft｜Internet Explorer
https://learn.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-080

---

四、相關連結
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
https://nvd.nist.gov/vuln/detail/CVE-2007-0671
https://nvd.nist.gov/vuln/detail/CVE-2013-3893
https://nvd.nist.gov/vuln/detail/CVE-2025-8088
https://nvd.nist.gov/vuln/detail/CVE-2025-8875
https://nvd.nist.gov/vuln/detail/CVE-2025-8876