Vulnerabilities > Sleuthkit > THE Sleuth KIT > 4.0.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-09 | CVE-2020-10233 | Out-of-bounds Read vulnerability in Sleuthkit the Sleuth KIT In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a heap-based buffer over-read in ntfs_dinode_lookup in fs/ntfs.c. | 9.1 |
| 2020-03-09 | CVE-2020-10232 | Out-of-bounds Write vulnerability in multiple products In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c. | 9.8 |
| 2019-07-18 | CVE-2019-1010065 | Integer Overflow or Wraparound vulnerability in multiple products The Sleuth Kit 4.6.0 and earlier is affected by: Integer Overflow. | 6.5 |
| 2018-11-29 | CVE-2018-19497 | Out-of-bounds Read vulnerability in multiple products In The Sleuth Kit (TSK) through 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c does not properly determine when a key length is too large, which allows attackers to cause a denial of service (SEGV on unknown address with READ memory access in a tsk_getu16 call in hfs_dir_open_meta_cb in tsk/fs/hfs_dent.c). | 6.5 |
| 2014-09-29 | CVE-2012-5619 | Improper Input Validation vulnerability in Sleuthkit the Sleuth KIT 4.0.1 The Sleuth Kit (TSK) 4.0.1 does not properly handle "." (dotfile) file system entries in FAT file systems and other file systems for which . | 2.1 |