Vulnerabilities > Cryptsetup Project > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-24 | CVE-2021-4122 | Insufficient Verification of Data Authenticity vulnerability in Cryptsetup Project Cryptsetup It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. | 4.3 |
| 2017-01-23 | CVE-2016-4484 | Improper Authentication vulnerability in Cryptsetup Project Cryptsetup The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earlier allows physically proximate attackers to gain shell access via many log in attempts with an invalid password. | 6.8 |