Vulnerabilities > Cryptsetup Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-24	CVE-2021-4122	Insufficient Verification of Data Authenticity vulnerability in Cryptsetup Project Cryptsetup It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. low complexity cryptsetup-project CWE-345	4.3
2020-09-16	CVE-2020-14382	Out-of-bounds Write vulnerability in multiple products A vulnerability was found in upstream release cryptsetup-2.2.0 where, there's a bug in LUKS2 format validation code, that is effectively invoked on every device/image presenting itself as LUKS2 container. local low complexity cryptsetup-project redhat canonical fedoraproject CWE-787	7.8
2017-01-23	CVE-2016-4484	Improper Authentication vulnerability in Cryptsetup Project Cryptsetup The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earlier allows physically proximate attackers to gain shell access via many log in attempts with an invalid password. low complexity cryptsetup-project CWE-287	6.8

Vulnerabilities > Cryptsetup Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Cryptsetup Project"}]}