CVE-2025-2489

Publication date

2025-03-18 11:26:32

Family

INCIBE

State

PUBLISHED

Description

Insecure information storage vulnerability in NTFS Tools version 3.5.1. Exploitation of this vulnerability could allow an attacker to know the application password, stored in /Users/user/Library/Application Support/ntfs-tool/config.json.