PT-2026-39573 · Unknown · Cramfs-Tools
Nich0Las
·
Published
2026-05-11
·
Updated
2026-05-11
·
CVE-2026-8274
CVSS v3.1
5.3
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
npitre cramfs-tools versions prior to 2.2
Description
A path traversal issue exists in the Directory Handler component within the
do directory() function of the cramfsck.c file. This flaw allows a local attacker to perform path traversal, which involves accessing files or directories outside the intended folder by manipulating file paths.Recommendations
Update to version 2.2.
Exploit
Fix
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cramfs-Tools