Eraser 5.3 does not clear Windows alternate data streams that are attached to files on NTFS file systems, which allows attackers to recover sensitive information that was supposed to be deleted.

Threat-Mapped Scoring

Score: 3.0

Priority: P2 - Serious (High)

• S1 – Steal Customer Account Information

EPSS

Score: 0.00695
Percentile: 0.70968

CVSS Scoring

Mapped CWE(s)

• CWE-459 : Incomplete Cleanup

Affected Products

• cpe:2.3:a:tolvanen:eraser:5.3:*:*:*:*:*:*:*

← Back to Home