ExFAT 1.3.0 Local Information Disclosure Vulnerability

ExFAT 1.3.0 Local Information Disclosure Vulnerability

CVE-2022-29973 · MEDIUM Severity

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

relan exFAT 1.3.0 allows local users to obtain sensitive information (data from deleted files in the filesystem) in certain situations involving offsets beyond ValidDataLength.

Learn more about our User Device Pen Test.