Lucene search
TalosCVELIST:CVE-2020-6105HistoryOct 15, 2020 - 2:48 p.m.
CVE-2020-6105
2020-10-1514:48:07
CWE-73
talos
www.cve.org
9
exploitable code execution
f2fs-tools f2fs.fsck
multiple devices functionality
f2fs filesystem
information overwrite
malicious file
vulnerability
CVSS3
8.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS
0.001
Percentile
49.4%
An exploitable code execution vulnerability exists in the multiple devices functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause Information overwrite resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerability.
CNA Affected
[
{
"product": "F2fs-Tools",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "F2fs-Tools F2fs.Fsck 1.13"
}
]
}
]Related
nvd
nvd
CVE-2020-6105
2020-10-15 15:15:11
prion
prion
Design/Logic Flaw
2020-10-15 15:15:00
ubuntucve
ubuntucve
CVE-2020-6105
2020-10-15 00:00:00
cve
cve
CVE-2020-6105
2020-10-15 15:15:11
alpinelinux
alpinelinux
CVE-2020-6105
2020-10-15 15:15:00
redhatcve
redhatcve
CVE-2020-6105
2022-05-20 23:38:49
veracode
veracode
Arbitrary Code Execution
2021-01-04 20:34:40
osv
osv
CVE-2020-6105
2020-10-15 15:15:11
debiancve
debiancve
CVE-2020-6105
2020-10-15 15:15:11
talos
talos
F2fs-Tools F2fs.Fsck Multiple Devices Code Execution Vulnerability
2020-10-14 00:00:00
nessus
nessus
GLSA-202101-26 : f2fs-tools: Multiple vulnerabilities
2021-01-26 00:00:00
gentoo
gentoo
f2fs-tools: Multiple vulnerabilities
2021-01-26 00:00:00
CVSS3
8.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS
0.001
Percentile
49.4%
Related for CVELIST:CVE-2020-6105