Vulnerabilities (CVE)

Filtered by vendor Idrix Subscribe
Filtered by product Truecrypt
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-1010208 1 Idrix 2 Truecrypt, Veracrypt 2024-11-21 2.1 LOW 3.3 LOW
IDRIX, Truecrypt Veracrypt, Truecrypt Prior to 1.23-Hotfix-1 (Veracrypt), all versions (Truecrypt) is affected by: Buffer Overflow. The impact is: Minor information disclosure of kernel stack. The component is: Veracrypt NT Driver (veracrypt.sys). The attack vector is: Locally executed code, IOCTL request to driver. The fixed version is: 1.23-Hotfix-1.
CVE-2016-1281 1 Idrix 2 Truecrypt, Veracrypt 2024-11-21 4.4 MEDIUM 7.8 HIGH
Untrusted search path vulnerability in the installer for TrueCrypt 7.2 and 7.1a, VeraCrypt before 1.17-BETA, and possibly other products allows local users to execute arbitrary code with administrator privileges and conduct DLL hijacking attacks via a Trojan horse DLL in the "application directory", as demonstrated with the USP10.dll, RichEd20.dll, NTMarta.dll and SRClient.dll DLLs.