PT-2026-39573 · Unknown · Cramfs-Tools

Nich0Las

·

Published

2026-05-11

·

Updated

2026-05-11

·

CVE-2026-8274

CVSS v3.1

5.3

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Name of the Vulnerable Software and Affected Versions npitre cramfs-tools versions prior to 2.2
Description A path traversal issue exists in the Directory Handler component within the do directory() function of the cramfsck.c file. This flaw allows a local attacker to perform path traversal, which involves accessing files or directories outside the intended folder by manipulating file paths.
Recommendations Update to version 2.2.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-8274

Affected Products

Cramfs-Tools