Squashfs Project Squashfs — known CVE vulnerabilities
Every CVE whose affected-product data names Squashfs Project Squashfs, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2015-4646 — CVSS 7.5 (high): (1) unsquash-1.c, (2) unsquash-2.c, (3) unsquash-3.c, and (4) unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a…
CVE-2012-4024 — CVSS 6.8 (medium): Stack-based buffer overflow in the get_component function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers…
CVE-2012-4025 — CVSS 6.8 (medium): Integer overflow in the queue_init function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute…
CVE-2015-4645 — CVSS 5.5 (medium): Integer overflow in the read_fragment_table_4 function in unsquash-4.c in Squashfs and sasquatch allows remote attackers to cause a denial…