Published on August 3rd, 2019 📆 | 4622 Views ⚑0
The Sleuth Kit 4.6.6 ISO9660 fs/iso9660.c memory corruption
|CVSS Meta Temp Score||Current Exploit Price (≈)|
A vulnerability has been found in The Sleuth Kit 4.6.6 and classified as critical. This vulnerability affects an unknown functionality of the file fs/iso9660.c of the component ISO9660. The manipulation with an unknown input leads to a memory corruption vulnerability (Out-of-Bounds). The CWE definition for the vulnerability is CWE-119. As an impact it is known to affect confidentiality, integrity, and availability.
The weakness was presented 08/02/2019. This vulnerability was named CVE-2019-14531 since 08/02/2019. Technical details are known, but there is no available exploit. The structure of the vulnerability defines a possible price range of USD $0-$5k at the moment (estimation calculated on 08/03/2019).
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
See 139379 for similar entry.
VulDB Meta Base Score: 5.5
VulDB Meta Temp Score: 5.5
Status: Not defined
Price Prediction: 🔍
Current Price Estimation: 🔒
0-Day unlock unlock unlock unlock Today unlock unlock unlock unlock
0-Day Time: 🔒
08/02/2019 Advisory disclosed Use the official API to access entries easily!
08/02/2019 +0 days CVE assigned
08/03/2019 +1 days VulDB entry created
08/03/2019 +0 days VulDB last update
CVE: CVE-2019-14531 (🔒)
See also: 🔒Created: 08/03/2019 08:03 AM
Use the official API to access entries easily!