Out of Bound Read Vulnerability in The Sleuth Kit by Sleuth Kit
CVE-2019-14531

9.8CRITICAL

Key Information:

Vendor: Sleuthkit
Status: The Sleuth Kit
Vendor: CVE Published:; 2 August 2019

What is CVE-2019-14531?

An out of bounds read vulnerability exists in The Sleuth Kit version 4.6.6, specifically in the iso9660 module when parsing System Use Sharing Protocol data. This issue could potentially lead to information disclosure, making it crucial for users to update to the latest version to mitigate such risks. For more details, refer to the issue on GitHub.

References

https://github.com/sleuthkit/sleuthkit/issues/1576

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 2, 2019
Vulnerability Reserved
Aug 2, 2019

CVE-2019-14531 Data

JSON

Sleuthkit

What is CVE-2019-14531?

References

CVSS V3.1

Timeline