本頁列出影響 ecryptfs ecryptfs_utils 的已公開 CVE 漏洞(透過 NVD CPE 關聯)。每列包含嚴重程度評分、摘要與發布日期,便於識別與分析安全議題。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2011-1837 | The lock-counter implementation in utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 allows local users to overwrite arbitrary files via unspecified vectors. | [email protected] | 3.6 | 0.38% | 2014-02-15 | 2026-04-29 |
| CVE-2011-1836 | utils/ecryptfs-recover-private in ecryptfs-utils before 90 does not establish a subdirectory with safe permissions, which might allow local users to bypass intended access restrictions via standard filesystem operations during the recovery process. | [email protected] | 4.6 | 0.38% | 2014-02-15 | 2026-04-29 |
| CVE-2011-1835 | The encrypted private-directory setup process in utils/ecryptfs-setup-private in ecryptfs-utils before 90 does not properly ensure that the passphrase file is created, which might allow local users to bypass intended access restrictions at a certain time in the new-user creation steps. | [email protected] | 4.4 | 0.35% | 2014-02-15 | 2026-04-29 |
| CVE-2011-1834 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly maintain the mtab file during error conditions, which allows local users to cause a denial of service (table corruption) or bypass intended unmounting restrictions via a umount system call. | [email protected] | 2.1 | 0.38% | 2014-02-15 | 2026-04-29 |
| CVE-2011-1832 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to remove directories via a umount system call. | [email protected] | 2.1 | 0.38% | 2014-02-15 | 2026-04-29 |
| CVE-2011-1831 | utils/mount.ecryptfs_private.c in ecryptfs-utils before 90 does not properly check mountpoint permissions, which allows local users to effectively replace any directory with a new filesystem, and consequently gain privileges, via a mount system call. | [email protected] | 4.6 | 0.37% | 2014-02-15 | 2026-04-29 |
| CVE-2008-5188 | The (1) ecryptfs-setup-private, (2) ecryptfs-setup-confidential, and (3) ecryptfs-setup-pam-wrapped.sh scripts in ecryptfs-utils 45 through 61 in eCryptfs place cleartext passwords on command lines, which allows local users to obtain sensitive information by listing the process. | [email protected] | 7.2 | 0.39% | 2008-11-21 | 2026-04-23 |