CVE-2025-52568
NeKernal Multiple Memory Corruption Vulnerabilities in mkfs.hefs
Vexday Risk Score
21Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 8.8EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
24 jun 2025Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
NeKernal is a free and open-source operating system stack. Prior to version 0.0.3, there are several memory safety issues that can lead to memory corruption, disk image corruption, denial of service, and potential code execution. These issues stem from unchecked memory operations, unsafe typecasting, and improper input validation. This issue has been patched in version 0.0.3.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
nekernel-org · nekernelQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://github.com/nekernel-org/nekernel/commit/6506875ad0ab210b82a5c4ce227bf851508de17dhttps://github.com/nekernel-org/nekernel/commit/6511afbf405c31513bc88ab06bca58218610a994https://github.com/nekernel-org/nekernel/pull/35https://github.com/nekernel-org/nekernel/pull/36https://github.com/nekernel-org/nekernel/security/advisories/GHSA-cmp2-5f6g-mw34