Suggestions search

All statuses

Filter by:

With package: sleuthkit

Found 3 matching suggestions

View:

Compact

Detailed

Published

Permalink CVE-2026-40026

4.4 MEDIUM

CVSS version (CVSS): 3.1
Attack Vector (AV): Local (L)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): Required (R)
Scope (S): Unchanged (U)
Confidentiality (C): Low (L)
Integrity (I): None (N)
Availability (A): Low (L)
Modified Attack Vector (MAV): Local (L)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): Low (L)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): None (N)
Modified Availability (MA): Low (L)

updated 2 months, 2 weeks ago by @LeSuisse Activity log

Created suggestion 2 months, 2 weeks ago
@LeSuisse accepted 2 months, 2 weeks ago
@LeSuisse published on GitHub 2 months, 2 weeks ago

Sleuth Kit ISO9660 SUSP Extension Reference Out-of-Bounds Read

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parse_susp() function trusts len_id, len_des, and len_src fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SUSP block. An attacker can craft a malicious ISO image that causes reads past the end of the SUSP data buffer, and a zero-length SUSP entry can trigger an infinite parsing loop.

References

Pull Request product
Patch Commit patch

Ignored references (2)

Mobasi Sentinel Vulnerability Index vendor-advisory
VulnCheck Advisory: Sleuth Kit ISO9660 SUSP Extension Reference Out-of-Bounds Read third-party-advisory

Affected products

sleuthkit

==a95b0ac21733b059a517aaefa667a17e1bcbdee1
=<4.14.0

Matching in nixpkgs

pkgs.sleuthkit

Forensic/data recovery tool

nixos-unstable 4.14.0
- nixpkgs-unstable 4.14.0
- nixos-unstable-small 4.14.0

Package maintainers

@7c6f434c Michael Raskin <7c6f434c@mail.ru>
@gfrascadorio Galois <gfrascadorio@tutanota.com>

Published

Permalink CVE-2026-40024

7.1 HIGH

CVSS version (CVSS): 3.1
Attack Vector (AV): Local (L)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): Required (R)
Scope (S): Unchanged (U)
Confidentiality (C): High (H)
Integrity (I): High (H)
Availability (A): None (N)
Modified Attack Vector (MAV): Local (L)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): High (H)
Modified Availability (MA): None (N)

updated 2 months, 2 weeks ago by @LeSuisse Activity log

Created suggestion 2 months, 2 weeks ago
@LeSuisse accepted 2 months, 2 weeks ago
@LeSuisse published on GitHub 2 months, 2 weeks ago

Sleuth Kit tsk_recover Path Traversal

The Sleuth Kit through 4.14.0 contains a path traversal vulnerability in tsk_recover that allows an attacker to write files to arbitrary locations outside the intended recovery directory via crafted filenames or directory paths with path traversal sequences in a filesystem image. An attacker can craft a malicious filesystem image with embedded /../ sequences in filenames that, when processed by tsk_recover, writes files outside the output directory, potentially achieving code execution by overwriting shell configuration or cron entries.

References

Patch Commit patch

Ignored references (2)

Mobasi Sentinel Vulnerability Index vendor-advisory
VulnCheck Advisory: Sleuth Kit tsk_recover Path Traversal third-party-advisory

Affected products

sleuthkit

=<4.14.0
==a3f96b3bc36a8bb1a00c297f77110d4a6e7dd31b

Matching in nixpkgs

pkgs.sleuthkit

Forensic/data recovery tool

nixos-unstable 4.14.0
- nixpkgs-unstable 4.14.0
- nixos-unstable-small 4.14.0

Package maintainers

@7c6f434c Michael Raskin <7c6f434c@mail.ru>
@gfrascadorio Galois <gfrascadorio@tutanota.com>

Published

Permalink CVE-2026-40025

4.4 MEDIUM

CVSS version (CVSS): 3.1
Attack Vector (AV): Local (L)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): Required (R)
Scope (S): Unchanged (U)
Confidentiality (C): Low (L)
Integrity (I): None (N)
Availability (A): Low (L)
Modified Attack Vector (MAV): Local (L)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): Required (R)
Modified Confidentiality (MC): Low (L)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): None (N)
Modified Availability (MA): Low (L)

updated 2 months, 2 weeks ago by @LeSuisse Activity log

Created suggestion 2 months, 2 weeks ago
@LeSuisse accepted 2 months, 2 weeks ago
@LeSuisse published on GitHub 2 months, 2 weeks ago

Sleuth Kit APFS Keybag Parser Out-of-Bounds Read

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the APFS filesystem keybag parser where the wrapped_key_parser class follows attacker-controlled length fields without bounds checking, causing heap reads past the allocated buffer. An attacker can craft a malicious APFS disk image that triggers information disclosure or crashes when processed by any Sleuth Kit tool that parses APFS volumes.

References

Pull Request product
Patch Commit patch

Ignored references (2)

Mobasi Sentinel Vulnerability Index vendor-advisory
VulnCheck Advisory: Sleuth Kit APFS Keybag Parser Out-of-Bounds Read third-party-advisory

Affected products

sleuthkit

=<4.14.0
==8b9c9e7d493bd68624f3b1a3963edd45c3ff7611

Matching in nixpkgs

pkgs.sleuthkit

Forensic/data recovery tool

nixos-unstable 4.14.0
- nixpkgs-unstable 4.14.0
- nixos-unstable-small 4.14.0

Package maintainers

@7c6f434c Michael Raskin <7c6f434c@mail.ru>
@gfrascadorio Galois <gfrascadorio@tutanota.com>