CVE-2026-8274 | npitre cramfs-tools up to 2.1 Directory cramfsck.c do_directory path traversal

Inserito da Angelo Barbosa | Mag 10, 2026 | CVE

A vulnerability described as critical has been identified in npitre cramfs-tools up to 2.1. Affected is the function do_directory of the file cramfsck.c of the component Directory Handler. Such manipulation leads to path traversal.

This vulnerability is referenced as CVE-2026-8274. The attack can only be performed from a local environment. Furthermore, an exploit is available.

Upgrading the affected component is recommended.

CVE-2026-8274 | npitre cramfs-tools up to 2.1 Directory cramfsck.c do_directory path traversal

Post correlati

CVE-2026-2728 | LibreNMS up to 26.2.x showconfig Page cross site scripting

CVE-2024-31248 | Team Plugins360 All-in-One Video Gallery Plugin up to 3.5.2 on WordPress authorization

CVE-2024-23212 | Apple tvOS memory corruption

CVE-2024-48867 | QNAP QTS/QuTS hero crlf injection (qsa-24-49)