Skip to main content

Check Smart

1 CVEs product

Monthly

CVE-2021-42257 HIGH POC This Week

check_smart before 6.9.1 allows unintended drive access by an unprivileged user because it only checks for a substring match of a device path (the /dev/bus substring and a number), aka an unanchored. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Check Smart
NVD
CVSS 3.1
7.1
EPSS
0.4%
EPSS 0% CVSS 7.1
HIGH POC This Week

check_smart before 6.9.1 allows unintended drive access by an unprivileged user because it only checks for a substring match of a device path (the /dev/bus substring and a number), aka an unanchored. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Check Smart
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy