5 matches found
CVE-2025-2489
Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the application password, stored in /Users/user/Library/Application Support/ntfs-tool/config.json...
CVE-2025-2489
Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the application password, stored in /Users/user/Library/Application Support/ntfs-tool/config.json...
CVE-2025-2489
creationtimestamp| type| source ---|---|--- 2025-03-18 11:55:38+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7902 2025-03-18 16:03:52+00:00| seen| https://t.me/cvedetector/20567 2025-03-18 16:13:24+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lko2rkdmoa2m 2025-08-12...
CVE-2025-2489 Insecure storage of sensitive information in NTFS Tool
Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the application password, stored in /Users/user/Library/Application Support/ntfs-tool/config.json...
CVE-2025-2489
CVE-2025-2489 affects NTFS Tools 3.5.1 and involves insecure storage of sensitive information. The vulnerability stems from storing the application password in /Users/user/Library/Application Support/ntfs-tool/config.json, enabling an attacker with local access to read the password. Documented im...