70 matches found
UBUNTU-CVE-2026-56136
In NTFS-3G through 2026.2.25, an out-of-bounds read exists in ntfsirnill in libntfs-3g/index.c that allows an attacker to read possibly confidential information in an ntfs-3g process by crafting a malicious NTFS image. This read operation is triggered by creation of a file with a crafted name...
CVE-2026-50417
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally...
CVE-2026-50494
CVE-2026-50494 is a Windows NTFS vulnerability caused by a heap-based buffer overflow in NTFS handling that can let an authorized, local attacker execute code on the host. The issue affects Windows NTFS components and is being addressed by Microsoft security updates (e.g., KB5099539, KB5099540) r...
CVE-2026-50388
CVE-2026-50388 is an Windows NTFS local vulnerability described as an out-of-bounds read that allows an unauthenticated/unauthorized attacker to execute code locally. The CVE is tracked across multiple sources (NVD, MSRC, CIRCL) with a base CVSS v3.1 score of 7.8 (High) and LOCAL attack vector, r...
CVE-2026-50309 Windows NTFS Remote Code Execution Vulnerability
...
CVE-2026-50386
CVE-2026-50386 refers to a heap-based buffer overflow in Windows NTFS that allows an unauthorized attacker to execute code locally. The vulnerability affects Windows NTFS components as described in authoritative sources (NVD entry and MSRC update guidance). The exploitation detail in the provided...
CVE-2026-49789 Windows NTFS Elevation of Privilege Vulnerability
...
CVE-2026-49184 Windows NTFS Remote Code Execution Vulnerability
...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from setting the fc-fsprivate pointer to NULL in ntfsfillsuper without releasing the memory it points...
Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-40706)
The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-40706 advisory. - In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in...
CVE-2026-40706
In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfsbuildpermissionsposix in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path stat, readdir, open when...
CVE-2025-71267
In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop triggered by zero-sized ATTRLIST We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service DoS condition. A malformed NTFS image can cause an infinite loop when an...
Windows NTFS Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows NTFS allows an authorized attacker to execute code locally...
EUVD-2025-34421
Use after free in Windows NTFS allows an unauthorized attacker to elevate privileges locally...
CVE-2025-38615 fs/ntfs3: cancle set bad inode after removing name fails
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: cancle set bad inode after removing name fails The reproducer uses a file0 on a ntfs3 file system with a corrupted ilink. When renaming, the file0's inode is marked as a bad inode because the file name cannot be deleted...
Linux Distros Unpatched Vulnerability : CVE-2025-37806
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs/ntfs3: Keep write operations atomic syzbot reported a NULL pointer dereference in genericfilewriteiter. 1 Before the write operation is completed, the user...
The vulnerability of the NTFS file system of the Windows operating system, which allows a hacker to execute arbitrary code
The vulnerability of the NTFS file system in Windows operating systems is related to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code...
Microsoft Windows NTFS 缓冲区错误漏洞
Microsoft Windows NTFS is a file system from Microsoft USA that serves computer files. The file system has error warning, disk self-healing, and logging capabilities. A buffer error vulnerability exists in Microsoft Windows NTFS. The following products and editions are affected:Windows 10 Version...
The vulnerability of the `ntfs_get_block_vbo()` function in the `fs/ntfs3/inode.c` module of the Linux operating system allows a hacker to induce a service failure.
The vulnerability of the ntfsgetblockvbo function in the fs/ntfs3/inode.c module of the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the NTFS file system of the Windows operating system, which allows a perpetrator to disclose protected information
The vulnerability of the NTFS file system in Windows operating systems is related to the disclosure of password values in the log files. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by these files...