CVE-2025-52568
NeKernal Multiple Memory Corruption Vulnerabilities in mkfs.hefs
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8.8EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
24 jun 2025Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
NeKernal is a free and open-source operating system stack. Prior to version 0.0.3, there are several memory safety issues that can lead to memory corruption, disk image corruption, denial of service, and potential code execution. These issues stem from unchecked memory operations, unsafe typecasting, and improper input validation. This issue has been patched in version 0.0.3.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
Productos afectados
nekernel-org · nekernel¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://github.com/nekernel-org/nekernel/commit/6506875ad0ab210b82a5c4ce227bf851508de17dhttps://github.com/nekernel-org/nekernel/commit/6511afbf405c31513bc88ab06bca58218610a994https://github.com/nekernel-org/nekernel/pull/35https://github.com/nekernel-org/nekernel/pull/36https://github.com/nekernel-org/nekernel/security/advisories/GHSA-cmp2-5f6g-mw34