High severity7.8NVD Advisory· Published Mar 27, 2017· Updated May 13, 2026

CVE-2015-8026

Description

Heap-based buffer overflow in the verify_vbr_checksum function in exfatfsck in exfat-utils before 1.2.1 allows remote attackers to cause a denial of service (infinite loop) or possibly execute arbitrary code via a crafted filesystem.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.openwall.com/lists/oss-security/2015/10/29/13nvdMailing ListPatchThird Party Advisory
github.com/relan/exfat/commit/2e86ae5f81da11f11673d0546efb525af02b7786nvdIssue TrackingPatchThird Party Advisory
github.com/relan/exfat/issues/5nvdIssue TrackingPatchThird Party Advisory
security.gentoo.org/glsa/201612-31nvdPatchThird Party AdvisoryVDB Entry
www.securityfocus.com/bid/77307nvdThird Party AdvisoryVDB Entry
blog.fuzzing-project.org/25-Heap-overflow-and-endless-loop-in-exfatfsck-exfat-utils.htmlnvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000