Known Vulnerabilities for The Sleuth Kit by Sleuthkit
Listed below are 10 of the newest known vulnerabilities associated with "The Sleuth Kit" by "Sleuthkit".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40026 json | The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parse_s... | Not Provided | 2026-04-08 | 2026-04-08 |
| CVE-2026-40025 json | The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the APFS filesystem keybag parser where the wra... | Not Provided | 2026-04-08 | 2026-04-08 |
| CVE-2026-40024 json | The Sleuth Kit through 4.14.0 contains a path traversal vulnerability in tsk_recover that allows an attacker to write files t... | Not Provided | 2026-04-08 | 2026-04-08 |
| CVE-2022-45639 json | ** DISPUTED ** OS Command injection vulnerability in sleuthkit fls tool 4.11.1 allows attackers to execute arbitrary commands... | 7.8 - HIGH | 2023-01-24 | 2023-11-07 |
| CVE-2020-10233 json | In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a heap-based buffer over-read in ntfs_dinode_lookup in fs/ntfs... | 9.1 - CRITICAL | 2020-03-09 | 2023-11-07 |
| CVE-2020-10232 json | In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timest... | 9.8 - CRITICAL | 2020-03-09 | 2023-11-07 |
| CVE-2019-1010065 json | The Sleuth Kit 4.6.0 and earlier is affected by: Integer Overflow. The impact is: Opening crafted disk image triggers crash i... | 6.5 - MEDIUM | 2019-07-18 | 2023-11-07 |
| CVE-2019-14532 json | An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an underflow on tools/hashtool... | 9.8 - CRITICAL | 2019-08-02 | 2023-11-07 |
| CVE-2019-14531 json | An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an out of bounds read on iso9660 while parsing System Use Sha... | 9.8 - CRITICAL | 2019-08-02 | 2019-08-12 |
| CVE-2018-19497 json | In The Sleuth Kit (TSK) through 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c does not properly determine when a key length is too ... | 6.5 - MEDIUM | 2018-11-29 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Sleuthkit | The Sleuth Kit | 4.8.0 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.7.0 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.6.7 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.6.6 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.6.5 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.6.4 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.6.3 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.6.2 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.6.1 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.6.0 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.5.0 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.4.2 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.4.1 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.4.0 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.3.1 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.3.0 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.2.0 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.1.3 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.1.2 | |||
| Application | Sleuthkit | The Sleuth Kit | 4.1.1 |