CVE-2026-8784 | npitre cramfs-tools up to 2.2 cramfsck.c change_file_status symlink (Issue 13)

Inserito da Angelo Barbosa | Mag 17, 2026 | CVE

A vulnerability, which was classified as critical, has been found in npitre cramfs-tools up to 2.2. Affected is the function change_file_status of the file cramfsck.c. Performing a manipulation results in symlink following.

This vulnerability is reported as CVE-2026-8784. The attack requires a local approach. Moreover, an exploit is present.

It is recommended to apply a patch to fix this issue.

CVE-2026-8784 | npitre cramfs-tools up to 2.2 cramfsck.c change_file_status symlink (Issue 13)

Post correlati

CVE-2025-23885 | MJ Contact us Plugin up to 5.2.3 on WordPress cross site scripting

CVE-2024-1492 | WPify Woo Czech Plugin up to 4.0.8 on WordPress authorization

CVE-2024-28215 | NAVER nGrinder up to 3.5.8 Webhook Configuration access control

CVE-2021-46904 | Linux Kernel up to 5.11.13 hso get_free_serial_index use after free