Ecryptfs Ecryptfs-utils — known CVE vulnerabilities
Every CVE whose affected-product data names Ecryptfs Ecryptfs-utils, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2016-1572 — CVSS 8.4 (high): mount.ecryptfs_private.c in eCryptfs-utils does not validate mount destination filesystem types, which allows local users to gain…
CVE-2012-3409 — CVSS 7.8 (high): ecryptfs-utils: suid helper does not restrict mounting filesystems with nosuid,nodev which creates a possible privilege escalation
CVE-2014-9687 — CVSS 5.0 (medium): eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords…
CVE-2011-1836 — CVSS 4.6 (medium): utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local…
CVE-2011-1831 — CVSS 4.6 (medium): utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to…
CVE-2011-1835 — CVSS 4.4 (medium): The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the…
CVE-2011-1837 — CVSS 3.6 (low): The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary…
CVE-2015-8946 — CVSS 3.3 (low): ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT…
CVE-2016-6224 — CVSS 3.3 (low): ecryptfs-setup-swap in eCryptfs does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning on…
CVE-2011-1834 — CVSS 2.1 (low): utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows…
CVE-2011-1832 — CVSS 2.1 (low): utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to…