exploitDog

CVE-2025-2489

Опубликовано: 18 мар. 2025

Источник: nvd

EPSS Низкий

Описание

Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the application password, stored in /Users/user/Library/Application Support/ntfs-tool/config.json.

Ссылки

https://www.incibe.es/en/incibe-cert/notices/aviso/insecure-storage-sensitive-information-ntfs-tool

EPSS

Процентиль: 9%

0.00034

Низкий

Дефекты

CWE-922

Связанные уязвимости

GHSA-rvxj-3p98-69gx

github

11 месяцев назад

Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the application password, stored in /Users/user/Library/Application Support/ntfs-tool/config.json.

EPSS

Процентиль: 9%

0.00034

Низкий

Дефекты

CWE-922