CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

78 matches found

CBLMariner•added 2026/04/14 12:55 a.m.•2 views

CVE-2026-40024 affecting package sleuthkit for versions less than 4.12.1-2

CVE-2026-40024 affecting package sleuthkit for versions less than 4.12.1-2. A patched version of the package is available...

8.4CVSS5.8AI score0.00031EPSS

Exploits0

CBLMariner•added 2026/04/14 12:55 a.m.•2 views

CVE-2026-40025 affecting package sleuthkit for versions less than 4.12.1-2

CVE-2026-40025 affecting package sleuthkit for versions less than 4.12.1-2. A patched version of the package is available...

6.1CVSS5.8AI score0.00013EPSS

Exploits0

CBLMariner•added 2026/04/14 12:55 a.m.•1 views

CVE-2026-40026 affecting package sleuthkit for versions less than 4.12.1-2

CVE-2026-40026 affecting package sleuthkit for versions less than 4.12.1-2. A patched version of the package is available...

7.1CVSS5.8AI score0.00013EPSS

Exploits0

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-48503

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.01035EPSS

Exploits4References3

Microsoft CVE•added 2025/09/04 4:54 a.m.•2 views

OS Command injection vulnerability in sleuthkit fls tool 4.11.1 allows attackers to execute arbitrary commands via a crafted value to the m parameter. NOTE: third parties have disputed this because there is no analysis showing that the backtick command executes outside the context of the user account that entered the command line.

...

7.8CVSS7AI score0.01035EPSS

Exploits4

CBLMariner•added 2025/01/12 9:15 a.m.•179 views

CVE-2022-45639 affecting package sleuthkit 4.9.0-4

CVE-2022-45639 affecting package sleuthkit 4.9.0-4. This CVE either no longer is or was never applicable...

7.8CVSS7.7AI score0.01035EPSS

Exploits4

Exploit DB•added 2023/04/03 12:0 a.m.•151 views

sleuthkit 4.11.1 - Command Injection

Exploit Title: sleuthkit 4.11.1 - Command Injection Date: 2023-01-20 CVE-2022-45639 Vendor Homepage: https://github.com/sleuthkit Vulnerability Type: Command injection Attack Type: Local Version: 4.11.1 Exploit Author: Dino Barlattani, Giuseppe Granato Link poc:...

7.8CVSS7.7AI score0.01035EPSS

Exploits4

Packet Storm•added 2023/04/03 12:0 a.m.•215 views

Sleuthkit 4.11.1 Command Injection

7.8CVSS7.6AI score0.01035EPSS

Exploits4

0day.today•added 2023/04/03 12:0 a.m.•198 views

sleuthkit 4.11.1 - Command Injection Exploit

Exploit Title: sleuthkit 4.11.1 - Command Injection CVE-2022-45639 Vendor Homepage: https://github.com/sleuthkit Vulnerability Type: Command injection Attack Type: Local Version: 4.11.1 Exploit Author: Dino Barlattani, Giuseppe Granato Link poc: https://www.binaryworld.it/guidepoc.aspCVE-2022-456...

7.8CVSS7.8AI score0.01035EPSS

Exploits4

NVD•added 2023/01/24 2:15 a.m.•11 views

CVE-2022-45639

7.8CVSS8AI score0.01035EPSS

Exploits4References3

OSV•added 2023/01/24 2:15 a.m.•4 views

CVE-2022-45639

7.8CVSS7.9AI score0.01035EPSS

Exploits4References3

CVE•added 2023/01/24 12:0 a.m.•156 views

CVE-2022-45639

SLEUTHKIT: CVE-2022-45639 affects the fls tool (SleuthKit) 4.11.1, enabling OS command injection via a crafted value to the -m parameter. The vulnerability stems from the handling of the input in the m field, potentially allowing an attacker to execute arbitrary commands on the host when run loca...

7.8CVSS8AI score0.01035EPSS

Exploits4References3Affected Software1

Positive Technologies•added 2023/01/24 12:0 a.m.•1 views

PT-2023-14727 · Sleuth Kit · Sleuthkit

Name of the Vulnerable Software and Affected Versions: sleuthkit fls tool version 4.11.1 Description: The issue allows attackers to execute arbitrary commands via a crafted value to the m parameter. This is an OS Command injection vulnerability. Note that there is a dispute regarding the impact o...

7.8CVSS8.3AI score0.01035EPSS

Exploits4References9

Vulnrichment•added 2023/01/24 12:0 a.m.•5 views

CVE-2022-45639

8.3AI score0.01035EPSS

Exploits4References3

CNNVD•added 2023/01/24 12:0 a.m.•1 views

sleuthkit fls 操作系统命令注入漏洞

sleuthkit fls is a collection of data forensics tools from Brian Carrier's personal developer. An operating system command injection vulnerability exists in sleuthkit fls version 4.11.1, which stems from the presence of an operating system command injection vulnerability that allows an attacker t...

7.8CVSS7.8AI score0.01035EPSS

Exploits4References5

Cvelist•added 2023/01/24 12:0 a.m.•13 views

CVE-2022-45639

8.2AI score0.01035EPSS

Exploits4References3

Positive Technologies•added 2022/10/09 12:0 a.m.•1 views

PT-2022-36673 · Git +1 · Sleuthkit

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type known as Memcpy-param-overlap. The crash state involves several function calls, including tsk fs load file action, t...

6.9AI score

Exploits0References2

OpenVAS•added 2022/06/21 12:0 a.m.•14 views

Debian: Security Advisory (DLA-3054-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.3AI score0.03207EPSS

Exploits2References4

Debian•added 2022/06/20 2:1 p.m.•33 views

[SECURITY] [DLA 3054-1] sleuthkit security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3054-1 [email protected] https://www.debian.org/lts/security/ Andreas Rönnquist June 20, 2022 https://wiki.debian.org/LTS -...

9.8CVSS7.3AI score0.03207EPSS

Exploits2

OSV•added 2022/06/20 12:0 a.m.•30 views

DLA-3054-1 sleuthkit - security update

Bulletin has no description...

9.8CVSS6.2AI score0.03207EPSS

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by