High severity vuln in WinRAR could allow code to run when files are opened