Skip to main content

Ecryptfs Utils

4 CVEs product

Monthly

CVE-2016-6224 LOW Monitor

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Ecryptfs Utils Ubuntu Linux
NVD
CVSS 3.0
3.3
EPSS
0.1%
CVE-2015-8946 LOW Monitor

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Ubuntu Linux Ecryptfs Utils
NVD
CVSS 3.0
3.3
EPSS
0.1%
CVE-2016-1572 HIGH PATCH This Week

mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Ecryptfs Utils Ubuntu Linux Leap Opensuse +2
NVD
CVSS 3.1
8.4
EPSS
0.0%
CVE-2014-9687 MEDIUM POC This Month

eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Ecryptfs Utils
NVD
CVSS 2.0
5.0
EPSS
0.5%
EPSS 0% CVSS 3.3
LOW Monitor

ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on a (1) NVMe or (2) MMC drive, which allows local users to. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Ecryptfs Utils Ubuntu Linux
NVD
EPSS 0% CVSS 3.3
LOW Monitor

ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Ubuntu Linux Ecryptfs Utils
NVD
EPSS 0% CVSS 8.4
HIGH PATCH This Week

mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain privileges by mounting over a nonstandard filesystem, as demonstrated. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Ecryptfs Utils Ubuntu Linux +4
NVD
EPSS 1% CVSS 5.0
MEDIUM POC This Month

eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Ecryptfs Utils
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy