Vulnerabilities > CVE-2022-30783 - Unchecked Return Value vulnerability in multiple products

CVSS 6.7 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

NVD

Published: 2022-05-26

Updated: 2023-11-07

Summary

An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G through 2021.8.22 when using libfuse-lite.

Vulnerable Configurations

Part	Description	Count
Application	Tuxera Tuxera Ntfs 3G - Tuxera Ntfs 3G 2009.1.1 Tuxera Ntfs 3G 2009.2.1 Tuxera Ntfs 3G 2009.3.8 Tuxera Ntfs 3G 2009.4.4 Tuxera Ntfs 3G 2009.11.14 Tuxera Ntfs 3G 2010.1.16 Tuxera Ntfs 3G 2010.3.6 Tuxera Ntfs 3G 2010.5.16 Tuxera Ntfs 3G 2010.5.22 Tuxera Ntfs 3G 2010.8.8 Tuxera Ntfs 3G 2010.10.2 Tuxera Ntfs 3G 2011.1.15 Tuxera Ntfs 3G 2011.4.12 Tuxera Ntfs 3G 2012.1.15 Tuxera Ntfs 3G 2013.1.13 Tuxera Ntfs 3G 2014.2.15 Tuxera Ntfs 3G 2015.3.14 Tuxera Ntfs 3G 2016.2.22 Tuxera Ntfs 3G 2017.3.23 Tuxera Ntfs 3G 2021.8.22	21
OS	Fedoraproject Fedoraproject Fedora 35 Fedoraproject Fedora 36	2
OS	Debian Debian Debian Linux 9.0 Debian Debian Linux 10.0 Debian Debian Linux 11.0	3

Common Weakness Enumeration (CWE)

CWE-252 - Unchecked Return Value

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References