Vulnerabilities > Sleuthkit > THE Sleuth KIT

DATE CVE VULNERABILITY TITLE RISK
2018-06-05 CVE-2018-11737 Out-of-bounds Read vulnerability in Sleuthkit the Sleuth KIT
An issue was discovered in libtskfs.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1.
network
sleuthkit CWE-125
5.8
2017-08-29 CVE-2017-13760 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
In The Sleuth Kit (TSK) 4.4.2, fls hangs on a corrupt exfat image in tsk_img_read() in tsk/img/img_io.c in libtskimg.a.
local
low complexity
sleuthkit debian CWE-119
5.5
2017-08-29 CVE-2017-13756 Infinite Loop vulnerability in multiple products
In The Sleuth Kit (TSK) 4.4.2, opening a crafted disk image triggers infinite recursion in dos_load_ext_table() in tsk/vs/dos.c in libtskvs.a, as demonstrated by mmls.
local
low complexity
sleuthkit debian CWE-835
5.5
2017-08-29 CVE-2017-13755 Out-of-bounds Read vulnerability in multiple products
In The Sleuth Kit (TSK) 4.4.2, opening a crafted ISO 9660 image triggers an out-of-bounds read in iso9660_proc_dir() in tsk/fs/iso9660_dent.c in libtskfs.a, as demonstrated by fls.
local
low complexity
sleuthkit debian CWE-125
5.5
2014-09-29 CVE-2012-5619 Improper Input Validation vulnerability in Sleuthkit the Sleuth KIT 4.0.1
The Sleuth Kit (TSK) 4.0.1 does not properly handle "." (dotfile) file system entries in FAT file systems and other file systems for which .
local
low complexity
sleuthkit CWE-20
2.1