CVE-2025-2489
Essential information
- Published
- 18/03/2025 12:15
- Modified
- 18/03/2025 12:15
- Author
- —
- Creator
- —
- CISA KEV
- No
- CWE
- —
- CVSS vector
- — — —
Description
Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the application password, stored in /Users/user/Library/Application Support/ntfs-tool/config.json.
NVD status
- Status
- Received — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| ntfs-tools / ntfs tools | cpe:2.3:a:ntfs-tools:ntfs_tools:3.5.1:*:*:*:*:*:*:* |