OESA-2026-1935 sleuthkit security update

The Sleuth Kit previously known as TASK is a collection of UNIX-based command line file system forensic tools that allow an investigator to examine NTFS, FAT, FFS, EXT2FS, EXT3FS and ExFAT file systems of a suspect computer in a non-intrusive fashion. The tools have a layer-based design and can...

SUSE CVE-2026-40024

The Sleuth Kit through 4.14.0 contains a path traversal vulnerability in tskrecover that allows an attacker to write files to arbitrary locations outside the intended recovery directory via crafted filenames or directory paths with path traversal sequences in a filesystem image. An attacker can...

CVE-2026-40024

creationtimestamp| type| source ---|---|--- 2026-04-08 23:12:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mizg6drzp72z 2026-04-09 01:27:32+00:00| published-proof-of-concept| Telegram/Dz-0u6C1u9T0WCXCs4W5hHtkLp3TtNEV9yEjsLh0yFvD1Y 2026-04-09 01:33:01+00:00| seen|...

CVE-2026-40024 Sleuth Kit tsk_recover Path Traversal

The Sleuth Kit through 4.14.0 contains a path traversal vulnerability in tskrecover that allows an attacker to write files to arbitrary locations outside the intended recovery directory via crafted filenames or directory paths with path traversal sequences in a filesystem image. An attacker can...