How severe is CVE-2020-6108?

CVE-2020-6108 has a CVSS v3 score of 7.8 (HIGH).

CVE-2020-6108

Name: f2fs-tools
Author: f2fs-tools_project

7.8HIGH

An exploitable code execution vulnerability exists in the fsck_chk_orphan_node functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause a heap buffer overflow resultin

Published: 10/15/2020Updated: 11/21/2024

Description

An exploitable code execution vulnerability exists in the fsck_chk_orphan_node functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause a heap buffer overflow resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerability.

AI AnalysisPowered by AI

Affected Products

f2fs-tools_projectf2fs-tools

References

https://security.gentoo.org/glsa/202101-26
Third Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1050
ExploitTechnical DescriptionThird Party Advisory
https://security.gentoo.org/glsa/202101-26
Third Party Advisory
https://talosintelligence.com/vulnerability_reports/TALOS-2020-1050
ExploitTechnical DescriptionThird Party Advisory