Aggregates CVE and security vulnerability intelligence across all inotify-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk buffer overflow; exposure may include vendor impact application crash and vendor impact memory corruption in vendor surface production workloads contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2009-3589 | incron 0.5.5 does not initialize supplementary groups when running a process from a user's incrontabs, which causes the process to be run with the incrond supplementary groups and allows local users to gain privileges via an incrontab table. | [email protected] | 4.6 | 0.05% | 2009-10-08 | 2026-04-23 |
| CVE-2007-5037 | Buffer overflow in the inotifytools_snprintf function in src/inotifytools.c in the inotify-tools library before 3.11 allows context-dependent attackers to execute arbitrary code via a long filename. | [email protected] | 6.8 | 1.86% | 2007-09-24 | 2026-04-23 |
| CVE-2007-0636 | Unspecified vulnerability in inotify before 0.3.5 has unknown impact and attack vectors, related to "access rights to watched files." | [email protected] | 2.1 | 0.06% | 2007-01-31 | 2026-04-23 |