Sleuth Kit
The latest Sleuth Kit coverage — news, analysis, and updates from the WindowsNews.AI desk.
CVE-2026-40024: Path Traversal Vulnerability in Sleuth Kit's tsk_recover Tool Exposes DFIR Systems
A critical path traversal vulnerability in The Sleuth Kit's tsk_recover tool has been assigned CVE-2026-40024, exposing digital forensics and incident response (DFIR) systems to potential file system...
CVE-2026-40025: APFS Keybag Parser Vulnerability in Sleuth Kit Threatens Forensic Investigations
A critical vulnerability in The Sleuth Kit's APFS keybag parser has been disclosed as CVE-2026-40025, exposing forensic investigators and security professionals to potential denial-of-service attacks...
CVE-2026-40026: Sleuth Kit ISO9660 SUSP Out-of-Bounds Read Vulnerability Analysis
CVE-2026-40026 represents a subtle but significant vulnerability in The Sleuth Kit's ISO9660 file system parser. This out-of-bounds read flaw in the SUSP (System Use Sharing Protocol) handling code...
Heads Up, Forensic Analysts: The Sleuth Kit's fls Tool Has a Disputed Command-Injection Flaw—Here's How to Handle It
A vulnerability in the widely used open-source forensic tool The Sleuth Kit can be exploited to run arbitrary commands on a system—but the validity of the flaw is hotly contested. Tracked as...