threat
engine
.sh
Back
·
··:··
Home
/
Product
/
uutils coreutils
Product
uutils coreutils
54 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-35381
< 0.8.0
A logic error in the cut utility of uutils coreutils causes the utility to ignore the -s (only-delimited) flag when using the -z (
3.3
LOW
CVE-2026-35380
< 0.8.0
A logic error in the cut utility of uutils coreutils causes the program to incorrectly interpret the literal two-byte string '' (t
5.5
MEDIUM
CVE-2026-35379
< 0.8.0
A logic error in the tr utility of uutils coreutils causes the program to incorrectly define the [:graph:] and [:print:] character
3.3
LOW
CVE-2026-35378
< 0.8.0
A logic error in the expr utility of uutils coreutils causes the program to evaluate parenthesized subexpressions during the parsi
3.3
LOW
CVE-2026-35377
all versions
A logic error in the env utility of uutils coreutils causes a failure to correctly parse command-line arguments when utilizing the
3.3
LOW
CVE-2026-35376
< 0.8.0
A Time-of-Check to Time-of-Use (TOCTOU) vulnerability exists in the chcon utility of uutils coreutils during recursive operations.
4.5
MEDIUM
CVE-2026-35375
< 0.8.0
A logic error in the split utility of uutils coreutils causes the corruption of output filenames when provided with non-UTF-8 pref
3.3
LOW
CVE-2026-35374
all versions
A Time-of-Check to Time-of-Use (TOCTOU) vulnerability exists in the split utility of uutils coreutils. The program attempts to pre
6.3
MEDIUM
CVE-2026-35373
all versions
A logic error in the ln utility of uutils coreutils causes the program to reject source paths containing non-UTF-8 filename bytes
3.3
LOW
CVE-2026-35372
< 0.8.0
A logic error in the ln utility of uutils coreutils allows the utility to dereference a symbolic link target even when the --no-de
5.0
MEDIUM
CVE-2026-35371
all versions
The id utility in uutils coreutils exhibits incorrect behavior in its "pretty print" output when the real UID and effective UID di
3.3
LOW
CVE-2026-35370
all versions
The id utility in uutils coreutils miscalculates the groups= section of its output. The implementation uses a user's real GID inst
4.4
MEDIUM
CVE-2026-35369
< 0.6.0
An argument parsing error in the kill utility of uutils coreutils incorrectly interprets kill -1 as a request to send the default
5.5
MEDIUM
CVE-2026-35368
all versions
A vulnerability exists in the chroot utility of uutils coreutils when using the --userspec option. The utility resolves the user s
7.8
HIGH
CVE-2026-35367
all versions
The nohup utility in uutils coreutils creates its default output file, nohup.out, without specifying explicit restricted permissio
3.3
LOW
CVE-2026-35366
< 0.6.0
The printenv utility in uutils coreutils fails to display environment variables containing invalid UTF-8 byte sequences. While POS
4.4
MEDIUM
CVE-2026-35365
< 0.7.0
The mv utility in uutils coreutils improperly handles directory trees containing symbolic links during moves across filesystem bou
6.6
MEDIUM
CVE-2026-35364
all versions
A Time-of-Check to Time-of-Use (TOCTOU) race condition exists in the mv utility of uutils coreutils during cross-device operations
6.3
MEDIUM
CVE-2026-35363
all versions
A vulnerability in the rm utility of uutils coreutils allows the bypass of safeguard mechanisms intended to protect the current di
5.6
MEDIUM
CVE-2026-35362
< 0.6.0
The safe_traversal module in uutils coreutils, which provides protection against Time-of-Check to Time-of-Use (TOCTOU) symlink rac
3.6
LOW
CVE-2026-35361
< 0.6.0
The mknod utility in uutils coreutils fails to handle security labels atomically by creating device nodes before setting the SELin
3.4
LOW
CVE-2026-35360
all versions
The touch utility in uutils coreutils is vulnerable to a Time-of-Check to Time-of-Use (TOCTOU) race condition during file creation
6.3
MEDIUM
CVE-2026-35359
all versions
A Time-of-Check to Time-of-Use (TOCTOU) vulnerability in the cp utility of uutils coreutils allows an attacker to bypass no-derefe
4.7
MEDIUM
CVE-2026-35358
< 0.7.0
The cp utility in uutils coreutils, when performing recursive copies (-R), incorrectly treats character and block device nodes as
4.4
MEDIUM
CVE-2026-35357
all versions
The cp utility in uutils coreutils is vulnerable to an information disclosure race condition. Destination files are initially crea
4.7
MEDIUM
CVE-2026-35356
< 0.7.0
A Time-of-Check to Time-of-Use (TOCTOU) vulnerability exists in the install utility of uutils coreutils when using the -D flag. Th
6.3
MEDIUM
CVE-2026-35355
< 0.6.0
The install utility in uutils coreutils is vulnerable to a Time-of-Check to Time-of-Use (TOCTOU) race condition during file instal
6.3
MEDIUM
CVE-2026-35354
all versions
A Time-of-Check to Time-of-Use (TOCTOU) vulnerability exists in the mv utility of uutils coreutils during cross-device moves. The
4.7
MEDIUM
CVE-2026-35353
< 0.6.0
The mkdir utility in uutils coreutils incorrectly applies permissions when using the -m flag by creating a directory with umask-de
3.3
LOW
CVE-2026-35352
all versions
A Time-of-Check to Time-of-Use (TOCTOU) race condition exists in the mkfifo utility of uutils coreutils. The utility creates a FIF
7.0
HIGH
CVE-2026-35351
all versions
The mv utility in uutils coreutils fails to preserve file ownership during moves across different filesystem boundaries. The utili
4.2
MEDIUM
CVE-2026-35350
all versions
The cp utility in uutils coreutils fails to properly handle setuid and setgid bits when ownership preservation fails. When copying
6.6
MEDIUM
CVE-2026-35349
< 0.7.0
A vulnerability in the rm utility of uutils coreutils allows a bypass of the --preserve-root protection. The implementation uses a
6.7
MEDIUM
CVE-2026-35348
all versions
The sort utility in uutils coreutils is vulnerable to a process panic when using the --files0-from option with inputs containing n
5.5
MEDIUM
CVE-2026-35347
< 0.6.0
The comm utility in uutils coreutils incorrectly consumes data from non-regular file inputs before performing comparison operation
4.4
MEDIUM
CVE-2026-35346
< 0.6.0
The comm utility in uutils coreutils silently corrupts data by performing lossy UTF-8 conversion on all output lines. The implemen
3.3
LOW
CVE-2026-35345
all versions
A vulnerability in the tail utility of uutils coreutils allows for the exfiltration of sensitive file contents when using the --fo
5.3
MEDIUM
CVE-2026-35344
all versions
The dd utility in uutils coreutils suppresses errors during file truncation operations by unconditionally calling Result::ok() on
3.3
LOW
CVE-2026-35343
< 0.7.0
The cut utility in uutils coreutils incorrectly handles the -s (only-delimited) option when a newline character is specified as th
3.3
LOW
CVE-2026-35342
< 0.6.0
The mktemp utility in uutils coreutils fails to properly handle an empty TMPDIR environment variable. Unlike GNU mktemp, which fal
3.3
LOW
CVE-2026-35341
all versions
A vulnerability in uutils coreutils mkfifo allows for the unauthorized modification of permissions on existing files. When mkfifo
7.1
HIGH
CVE-2026-35340
< 0.6.0
A flaw in the ChownExecutor used by uutils coreutils chown and chgrp causes the utilities to return an incorrect exit code during
5.5
MEDIUM
CVE-2026-35339
< 0.6.0
The recursive mode (-R) of the chmod utility in uutils coreutils incorrectly handles exit codes when processing multiple files. Th
5.5
MEDIUM
CVE-2026-35338
< 0.6.0
A vulnerability in the chmod utility of uutils coreutils allows users to bypass the --preserve-root safety mechanism. The implemen
7.3
HIGH
CVE-2024-0684
all versions
A flaw was found in the GNU coreutils "split" program. A heap overflow with user-controlled data of multiple hundred bytes in leng
5.5
MEDIUM
CVE-2015-4042
<= 8.23
Integer overflow in the keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 might allow attackers to cause a de
9.8
CRITICAL
CVE-2015-4041
<= 8.23
The keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 on 64-bit platforms performs a size calculation without
7.8
HIGH
CVE-2017-18018
<= 8.29
In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does not prevent replacement of a plain file with a symlink during
7.1
HIGH
CVE-2015-1865
all versions
fts.c in coreutils 8.4 allows local users to delete arbitrary files.
5.1
MEDIUM
CVE-2016-2781
all versions
chroot in GNU coreutils, when used with --userspec, allows local users to escape to the parent session via a crafted TIOCSTI ioctl
4.6
MEDIUM
CVE-2014-9471
< 8.23
The parse_datetime function in GNU coreutils allows remote attackers to cause a denial of service (crash) or possibly execute arbi
CVE-2009-4135
all versions
The distcheck rule in dist-check.mk in GNU coreutils 5.2.1 through 8.1 allows local users to gain privileges via a symlink attack
CVE-2008-1946
all versions
The default configuration of su in /etc/pam.d/su in GNU coreutils 5.2.1 allows local users to gain the privileges of a (1) locked
CVE-2005-1039
all versions
Race condition in Core Utilities (coreutils) 5.2.1, when (1) mkdir, (2) mknod, or (3) mkfifo is running with the -m switch, allows
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin