The Sleuth Kit@* Security Vulnerabilities and Issues — The Sleuth Kit@* CVE List

Lucene search

SleuthkitThe Sleuth Kit*

8 matches found

CVE•added 2020/03/09 12:15 a.m.•135 views

CVE-2020-10232

In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c.

9.8CVSS9.4AI score0.01411EPSS

CVE•added 2020/03/09 12:15 a.m.•119 views

CVE-2020-10233

In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a heap-based buffer over-read in ntfs_dinode_lookup in fs/ntfs.c.

9.1CVSS9.3AI score0.00546EPSS

CVE•added 2018/11/29 11:29 p.m.•93 views

CVE-2018-19497

In The Sleuth Kit (TSK) through 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c does not properly determine when a key length is too large, which allows attackers to cause a denial of service (SEGV on unknown address with READ memory access in a tsk_getu16 call in hfs_dir_open_meta_cb in tsk/fs/hfs_dent.c)...

6.5CVSS6.2AI score0.02139EPSS

CVE•added 2019/07/18 5:15 p.m.•65 views

CVE-2019-1010065

The Sleuth Kit 4.6.0 and earlier is affected by: Integer Overflow. The impact is: Opening crafted disk image triggers crash in tsk/fs/hfs_dent.c:237. The component is: Overflow in fls tool used on HFS image. Bug is in tsk/fs/hfs.c file in function hfs_cat_traverse() in lines: 952, 1062. The attack ...

6.5CVSS6.4AI score0.01178EPSS

CVE•added 2018/06/05 11:29 a.m.•39 views

CVE-2018-11740

An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function tsk_UTF16toUTF8 in tsk/base/tsk_unicode.c which could be leveraged by an attacker to disclose information or manipulated to read fr...

8.1CVSS5.4AI score0.00311EPSS

CVE•added 2018/06/05 11:29 a.m.•38 views

CVE-2018-11737

An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_fix_idxrec in tsk/fs/ntfs_dent.cpp which could be leveraged by an attacker to disclose information or manipulated to read from u...

8.1CVSS5.7AI score0.00311EPSS

CVE•added 2018/06/05 11:29 a.m.•37 views

CVE-2018-11739

An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function raw_read in tsk/img/raw.c which could be leveraged by an attacker to disclose information or manipulated to read from unmapped memor...

8.1CVSS6.1AI score0.00311EPSS

CVE•added 2018/06/05 11:29 a.m.•36 views

CVE-2018-11738

An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region was found in the function ntfs_make_data_run in tsk/fs/ntfs.c which could be leveraged by an attacker to disclose information or manipulated to read from unmap...

8.1CVSS6.1AI score0.00311EPSS