Tuxera: >> Ntfs-3g >> 2010.5.22 Security Vulnerabilities
Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation.
CVSS Score
7.8
EPSS Score
0.104
Published
2018-04-13
Page 4