Known Vulnerabilities for products from Sleuthkit
Listed below are 16 of the newest known vulnerabilities associated with the vendor "Sleuthkit".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-45639 json | ** DISPUTED ** OS Command injection vulnerability in sleuthkit fls tool 4.11.1 allows attackers to execute arbitrary commands... | 7.8 - HIGH | 2023-01-24 | 2023-11-07 |
| CVE-2020-10233 json | In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a heap-based buffer over-read in ntfs_dinode_lookup in fs/ntfs... | 9.1 - CRITICAL | 2020-03-09 | 2023-11-07 |
| CVE-2020-10232 json | In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timest... | 9.8 - CRITICAL | 2020-03-09 | 2023-11-07 |
| CVE-2019-1010065 json | The Sleuth Kit 4.6.0 and earlier is affected by: Integer Overflow. The impact is: Opening crafted disk image triggers crash i... | 6.5 - MEDIUM | 2019-07-18 | 2023-11-07 |
| CVE-2019-14532 json | An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an off-by-one overwrite due to an underflow on tools/hashtool... | 9.8 - CRITICAL | 2019-08-02 | 2023-11-07 |
| CVE-2019-14531 json | An issue was discovered in The Sleuth Kit (TSK) 4.6.6. There is an out of bounds read on iso9660 while parsing System Use Sha... | 9.8 - CRITICAL | 2019-08-02 | 2019-08-12 |
| CVE-2018-1000838 json | autopsy version <= 4.9.0 contains a XML External Entity (XXE) vulnerability in CaseMetadata XML Parser that can result in Dis... | 10 - CRITICAL | 2018-12-20 | 2019-01-08 |
| CVE-2018-19497 json | In The Sleuth Kit (TSK) through 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c does not properly determine when a key length is too ... | 6.5 - MEDIUM | 2018-11-29 | 2023-11-07 |
| CVE-2018-11740 json | An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of... | 8.1 - HIGH | 2018-06-05 | 2018-07-13 |
| CVE-2018-11739 json | An issue was discovered in libtskimg.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of ... | 8.1 - HIGH | 2018-06-05 | 2018-07-13 |
| CVE-2018-11738 json | An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a... | 8.1 - HIGH | 2018-06-05 | 2018-07-13 |
| CVE-2018-11737 json | An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. An out-of-bounds read of a... | 8.1 - HIGH | 2018-06-05 | 2018-07-13 |
| CVE-2017-13760 json | In The Sleuth Kit (TSK) 4.4.2, fls hangs on a corrupt exfat image in tsk_img_read() in tsk/img/img_io.c in libtskimg.a. | 5.5 - MEDIUM | 2017-08-29 | 2022-11-29 |
| CVE-2017-13756 json | In The Sleuth Kit (TSK) 4.4.2, opening a crafted disk image triggers infinite recursion in dos_load_ext_table() in tsk/vs/dos... | 5.5 - MEDIUM | 2017-08-29 | 2022-11-29 |
| CVE-2017-13755 json | In The Sleuth Kit (TSK) 4.4.2, opening a crafted ISO 9660 image triggers an out-of-bounds read in iso9660_proc_dir() in tsk/f... | 5.5 - MEDIUM | 2017-08-29 | 2022-11-29 |
| CVE-2012-5619 json | The Sleuth Kit (TSK) 4.0.1 does not properly handle "." (dotfile) file system entries in FAT file systems and other file syst... | 2.1 - LOW | 2014-09-29 | 2014-09-30 |
Known software with vulnerabilities from Sleuthkit
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Sleuthkit | Autopsy | 2.20 |
| Application | Sleuthkit | The Sleuth Kit | 1.61 |