Cryptsetup Project Cryptsetup — known CVE vulnerabilities
Every CVE whose affected-product data names Cryptsetup Project Cryptsetup, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-14382 — CVSS 7.8 (high): A vulnerability was found in upstream release cryptsetup-2.2.0 where, there's a bug in LUKS2 format validation code, that is effectively…
CVE-2016-4484 — CVSS 6.8 (medium): The Debian initrd script for the cryptsetup package 2:1.7.3-2 and earlier allows physically proximate attackers to gain shell access via…
CVE-2021-4122 — CVSS 4.3 (medium): It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An…