Skip to main content

Openzfs

3 CVEs product

Monthly

CVE-2023-49298 HIGH POC PATCH This Week

OpenZFS through 2.1.13 and 2.2.x through 2.2.1, in certain scenarios involving applications that try to rely on efficient copying of file data, can replace file contents with zero-valued bytes and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass IBM Openzfs
NVD GitHub
CVSS 3.1
7.5
EPSS
1.2%
CVE-2020-24717 HIGH POC PATCH This Week

OpenZFS before 2.0.0-rc1, when used on FreeBSD, misinterprets group permissions as user permissions, as demonstrated by mode 0770 being equivalent to mode 0777. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Openzfs
NVD GitHub
CVSS 3.1
7.8
EPSS
0.5%
CVE-2020-24716 HIGH POC PATCH This Week

OpenZFS before 2.0.0-rc1, when used on FreeBSD, allows execute permissions for all directories. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Authentication Bypass Openzfs
NVD GitHub
CVSS 3.1
7.8
EPSS
0.5%
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

OpenZFS through 2.1.13 and 2.2.x through 2.2.1, in certain scenarios involving applications that try to rely on efficient copying of file data, can replace file contents with zero-valued bytes and. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass IBM Openzfs
NVD GitHub
EPSS 0% CVSS 7.8
HIGH POC PATCH This Week

OpenZFS before 2.0.0-rc1, when used on FreeBSD, misinterprets group permissions as user permissions, as demonstrated by mode 0770 being equivalent to mode 0777. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Openzfs
NVD GitHub
EPSS 0% CVSS 7.8
HIGH POC PATCH This Week

OpenZFS before 2.0.0-rc1, when used on FreeBSD, allows execute permissions for all directories. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Authentication Bypass Openzfs
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy