Vulnerabilities > Tuxera > Ntfs 3G > 2021.8.22

DATE CVE VULNERABILITY TITLE RISK
2022-11-06 CVE-2022-40284 Classic Buffer Overflow vulnerability in multiple products
A buffer overflow was discovered in NTFS-3G before 2022.10.3.
local
low complexity
tuxera debian fedoraproject CWE-120
7.8
7.8
2021-09-07 CVE-2021-33286 Out-of-bounds Write vulnerability in multiple products
In NTFS-3G versions < 2021.8.22, when a specially crafted unicode string is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.
local
low complexity
tuxera debian CWE-787
7.8
7.8
2021-09-07 CVE-2021-39255 Out-of-bounds Read vulnerability in multiple products
A crafted NTFS image can trigger an out-of-bounds read, caused by an invalid attribute in ntfs_attr_find_in_attrdef, in NTFS-3G < 2021.8.22.
local
low complexity
tuxera debian CWE-125
7.8
7.8
2021-09-07 CVE-2021-39256 Out-of-bounds Write vulnerability in multiple products
A crafted NTFS image can cause a heap-based buffer overflow in ntfs_inode_lookup_by_name in NTFS-3G < 2021.8.22.
local
low complexity
tuxera debian CWE-787
7.8
7.8
2021-09-07 CVE-2021-39257 Uncontrolled Recursion vulnerability in multiple products
A crafted NTFS image with an unallocated bitmap can lead to a endless recursive function call chain (starting from ntfs_attr_pwrite), causing stack consumption in NTFS-3G < 2021.8.22.
local
low complexity
tuxera debian CWE-674
5.5
5.5
2021-09-07 CVE-2021-39258 Out-of-bounds Read vulnerability in multiple products
A crafted NTFS image can cause out-of-bounds reads in ntfs_attr_find and ntfs_external_attr_find in NTFS-3G < 2021.8.22.
local
low complexity
tuxera debian CWE-125
7.8
7.8
2021-09-07 CVE-2021-39259 Out-of-bounds Write vulnerability in multiple products
A crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute length in ntfs_inode_lookup_by_name, in NTFS-3G < 2021.8.22.
local
low complexity
tuxera debian CWE-787
7.8
7.8
2021-09-07 CVE-2021-39260 Out-of-bounds Write vulnerability in multiple products
A crafted NTFS image can cause an out-of-bounds access in ntfs_inode_sync_standard_information in NTFS-3G < 2021.8.22.
local
low complexity
tuxera debian CWE-787
7.8
7.8
2021-09-07 CVE-2021-39261 Out-of-bounds Write vulnerability in multiple products
A crafted NTFS image can cause a heap-based buffer overflow in ntfs_compressed_pwrite in NTFS-3G < 2021.8.22.
local
low complexity
tuxera debian CWE-787
7.8
7.8
2021-09-07 CVE-2021-39262 Out-of-bounds Write vulnerability in multiple products
A crafted NTFS image can cause an out-of-bounds access in ntfs_decompress in NTFS-3G < 2021.8.22.
local
low complexity
tuxera debian CWE-787
7.8
7.8