CVE-2019-1010208

Source
https://nvd.nist.gov/vuln/detail/CVE-2019-1010208
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-1010208.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-1010208
Related
Published
2019-07-23T14:15:13Z
Modified
2025-01-15T01:36:33.470374Z
Severity
  • 3.3 (Low) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVSS Calculator
Summary
[none]
Details

IDRIX, Truecrypt Veracrypt, Truecrypt Prior to 1.23-Hotfix-1 (Veracrypt), all versions (Truecrypt) is affected by: Buffer Overflow. The impact is: Minor information disclosure of kernel stack. The component is: Veracrypt NT Driver (veracrypt.sys). The attack vector is: Locally executed code, IOCTL request to driver. The fixed version is: 1.23-Hotfix-1.

References

Affected packages

Git / github.com/veracrypt/veracrypt

Affected ranges

Type
GIT
Repo
https://github.com/veracrypt/veracrypt
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Fixed

Affected versions

VeraCrypt_1.*

VeraCrypt_1.0a
VeraCrypt_1.0b
VeraCrypt_1.0c
VeraCrypt_1.0d
VeraCrypt_1.0e
VeraCrypt_1.0f
VeraCrypt_1.0f-1
VeraCrypt_1.0f-2
VeraCrypt_1.0f-BETA
VeraCrypt_1.0f-BETA2
VeraCrypt_1.0f-BETA3
VeraCrypt_1.12
VeraCrypt_1.13
VeraCrypt_1.14
VeraCrypt_1.15
VeraCrypt_1.16
VeraCrypt_1.17
VeraCrypt_1.18
VeraCrypt_1.18_PreRelease
VeraCrypt_1.18a
VeraCrypt_1.19
VeraCrypt_1.20
VeraCrypt_1.21
VeraCrypt_1.22
VeraCrypt_1.23

VeraCrypt_Linux_1.*

VeraCrypt_Linux_1.0d
VeraCrypt_Linux_1.0e
VeraCrypt_Linux_1.0f-BETA

VeraCrypt_MacOSX_1.*

VeraCrypt_MacOSX_1.0d
VeraCrypt_MacOSX_1.0e
VeraCrypt_MacOSX_1.0f-BETA