admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2025/CVE-2025-09xx/CVE-2025-0927.json
cad-safe-bot c8a5cff72e Auto-Update: 2025-03-25T15:00:21.124020+00:00
2025-03-25 15:03:53 +00:00

68 lines
2.3 KiB
JSON
Raw Blame History

{
"id": "CVE-2025-0927",
"sourceIdentifier": "security@ubuntu.com",
"published": "2025-03-23T15:15:12.537",
"lastModified": "2025-03-25T14:15:27.397",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Attila Sz\u00e1sz discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service (system crash) or possibly execute arbitrary code."
},
{
"lang": "es",
"value": "Attila Sz\u00e1sz descubri\u00f3 que la implementaci\u00f3n del sistema de archivos HFS+ en el kernel de Linux conten\u00eda una vulnerabilidad de desbordamiento de pila. Un atacante podr\u00eda usar una imagen del sistema de archivos especialmente manipulada que, al montarse, podr\u00eda causar una denegaci\u00f3n de servicio (fallo del sistema) o posiblemente ejecutar c\u00f3digo arbitrario."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security@ubuntu.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "LOW",
"privilegesRequired": "LOW",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH"
},
"exploitabilityScore": 1.8,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "security@ubuntu.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-787"
}
]
}
],
"references": [
{
"url": "https://ubuntu.com/security/CVE-2025-0927",
"source": "security@ubuntu.com"
},
{
"url": "https://ubuntu.com/security/notices/USN-7276-1",
"source": "security@ubuntu.com"
},
{
"url": "https://ssd-disclosure.com/ssd-advisory-linux-kernel-hfsplus-slab-out-of-bounds-write/",
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"
}
]
}
Reference in New Issue View Git Blame Copy Permalink