RSS   Vulnerabilities for 'Veracrypt'   RSS

2019-12-13
 
CVE-2019-19501

CWE-269
 

 
VeraCrypt 1.24 allows Local Privilege Escalation during execution of VeraCryptExpander.exe.

 
2019-07-23
 
CVE-2019-1010208

CWE-119
 

 
IDRIX, Truecrypt Veracrypt, Truecrypt Prior to 1.23-Hotfix-1 (Veracrypt), all versions (Truecrypt) is affected by: Buffer Overflow. The impact is: Minor information disclosure of kernel stack. The component is: Veracrypt NT Driver (veracrypt.sys). The attack vector is: Locally executed code, IOCTL request to driver. The fixed version is: 1.23-Hotfix-1.

 
2017-01-23
 
CVE-2016-1281

 

 
Untrusted search path vulnerability in the installer for TrueCrypt 7.2 and 7.1a, VeraCrypt before 1.17-BETA, and possibly other products allows local users to execute arbitrary code with administrator privileges and conduct DLL hijacking attacks via a Trojan horse DLL in the "application directory", as demonstrated with the USP10.dll, RichEd20.dll, NTMarta.dll and SRClient.dll DLLs.

 

 >>> Vendor: Idrix 2 Products
Truecrypt
Veracrypt


Copyright 2024, cxsecurity.com

 

Back to Top