Lucene search
K

90 matches found

Talos
Talos
added 2020/10/14 12:0 a.m.40 views

F2fs-Tools F2fs.Fsck init_node_manager Information Disclosure Vulnerability

Summary An exploitable information disclosure vulnerability exists in the initnodemanager functionality of F2fs-Tools F2fs.Fsck 1.12 and 1.13. A specially crafted filesystem can be used to disclose information. An attacker can provide a malicious file to trigger this vulnerability. Tested Version...

5.5CVSS5.2AI score0.01514EPSS
Exploits1
Talos
Talos
added 2020/10/14 12:0 a.m.41 views

F2fs-Tools F2fs.Fsck fsck_chk_orphan_node Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the fsckchkorphannode functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause a heap buffer overflow resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerabilit...

8.2CVSS8.4AI score0.02213EPSS
Exploits1
Talos
Talos
added 2020/10/14 12:0 a.m.36 views

F2fs-Tools F2fs.Fsck dev_read Information Disclosure Vulnerability

Summary An exploitable information disclosure vulnerability exists in the devread functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause an uninitialized read resulting in an information disclosure. An attacker can provide a malicious file to trigger this...

5.5CVSS5.2AI score0.01514EPSS
Exploits1
Talos
Talos
added 2020/10/14 12:0 a.m.39 views

F2fs-Tools F2fs.Fsck filesystem checking Information Disclosure Vulnerability

Summary An exploitable information disclosure vulnerability exists in the getdnodeofdata functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause information disclosure resulting in a information disclosure. An attacker can provide a malicious file to trigger this...

5.5CVSS5.3AI score0.01508EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/10/08 12:0 a.m.26 views

Fedora 33 : f2fs-tools (2020-a0b24e9377)

Update to 1.14.0 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc...

7.8CVSS6.8AI score0.0173EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2020/08/27 12:0 a.m.4 views

PT-2020-6546 · Unknown +1 · F2Fs-Tools +1

Name of the Vulnerable Software and Affected Versions: F2fs-Tools versions 1.13 Description: The issue is related to incorrect external management of file names or paths, which can be exploited to delete arbitrary files by creating a specially crafted f2fs filesystem. A specially crafted f2fs...

8.2CVSS5.8AI score0.02213EPSS
Exploits6References33
Positive Technologies
Positive Technologies
added 2020/08/27 12:0 a.m.3 views

PT-2020-6547 · Unknown +1 · F2Fs-Tools +1

Name of the Vulnerable Software and Affected Versions: F2fs-Tools F2fs.Fsck versions 1.12 through 1.13 Description: An information disclosure issue exists in the init node manager functionality. A specially crafted filesystem can be used to disclose information. An attacker can provide a maliciou...

8.2CVSS5.2AI score0.02213EPSS
Exploits6References30
Positive Technologies
Positive Technologies
added 2020/08/27 12:0 a.m.3 views

PT-2020-6548 · Unknown +1 · F2Fs-Tools +1

Name of the Vulnerable Software and Affected Versions: F2fs-Tools F2fs.Fsck version 1.13 Description: An exploitable information disclosure issue exists in the dev read functionality. A specially crafted f2fs filesystem can cause an uninitialized read, resulting in information disclosure. An...

8.2CVSS5.2AI score0.02213EPSS
Exploits6References31
Positive Technologies
Positive Technologies
added 2020/08/27 12:0 a.m.4 views

PT-2020-6549 · Unknown +1 · F2Fs-Tools +1

Name of the Vulnerable Software and Affected Versions: F2fs-Tools version 1.13 Description: The issue is related to a heap buffer overflow that can be triggered by a specially crafted f2fs filesystem, potentially allowing an attacker to execute arbitrary code. This can be achieved by providing a...

8.2CVSS6.4AI score0.02213EPSS
Exploits6References32
Talos
Talos
added 2020/04/09 12:0 a.m.31 views

F2fs-tools fsck.f2fs sanity_check_area_boundary code execution vulnerability

Summary An exploitable code execution vulnerability exists in the file system checking functionality of fsck.f2fs 1.12.0. A specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations, resulting in code execution. An attacker can provide a malicious file to trigger this...

7.8CVSS7.3AI score0.0173EPSS
Exploits1
Rows per page
Query Builder