Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Libfuse ProjectLibfuse

3 matches found

CVE
CVEadded 2011/01/22 9:0 p.m.75 views

CVE-2010-3879

CVE-2010-3879 affects FUSE (likely versions up to 2.8.5 and earlier). The vulnerability arises from a symlink attack on the parent directory of a FUSE mountpoint, enabling local users to create/modify mtab entries and thereby unmount a filesystem (a separate issue from CVE-2010-0789). The descrip...

5.8CVSS6.1AI score0.0268EPSS
CVE
CVEadded 2026/03/20 8:20 p.m.13 views

CVE-2026-33150

CVE-2026-33150 affects libfuse: the io_uring subsystem vulnerability exists from 3.18.0 up to just before 3.18.2. When io_uring thread creation fails due to resource exhaustion (e.g., cgroup pids.max), fuse_uring_start() frees the ring pool but stores a dangling pointer in the session state, caus...

7.8CVSS6AI score0.00009EPSS
CVE
CVEadded 2026/03/20 8:20 p.m.9 views

CVE-2026-33179

CVE-2026-33179 affects libfuse’s io_uring transport: versions 3.18.0 up to but not including 3.18.2. A NULL pointer dereference and a memory leak in fuse_uring_init_queue can crash the FUSE daemon or exhaust resources; if numa_alloc_local fails, NULL pointers are used, and on fuse_uring_register_...

5.5CVSS5.8AI score0.00006EPSS