Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-6687

FatFs R0.16 and earlier contains a stack overflow bug in f_getlabel() because exFAT label length (XDIR_NumLabel) is trusted without enforcing spec maximums. This maps to CWE-121 (Stack-based Buffer Overflow). Estimated CVSS v3.1 vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H (7.6, High). The estimated CISA SSVC vectors are Exploitation: PoC, Technical Impact: Total.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 14.0%
CVSS Severity
CVSS v3 Score 7.6
Products affected by CVE-2026-6687
  • Elm-Chan » Fatfs » Version: r0.07a
    cpe:2.3:a:elm-chan:fatfs:r0.07a
  • Elm-Chan » Fatfs » Version: r0.07c
    cpe:2.3:a:elm-chan:fatfs:r0.07c
  • Elm-Chan » Fatfs » Version: r0.07e
    cpe:2.3:a:elm-chan:fatfs:r0.07e
  • Elm-Chan » Fatfs » Version: r0.08
    cpe:2.3:a:elm-chan:fatfs:r0.08
  • Elm-Chan » Fatfs » Version: r0.08a
    cpe:2.3:a:elm-chan:fatfs:r0.08a
  • Elm-Chan » Fatfs » Version: r0.08b
    cpe:2.3:a:elm-chan:fatfs:r0.08b
  • Elm-Chan » Fatfs » Version: r0.09
    cpe:2.3:a:elm-chan:fatfs:r0.09
  • Elm-Chan » Fatfs » Version: r0.09a
    cpe:2.3:a:elm-chan:fatfs:r0.09a
  • Elm-Chan » Fatfs » Version: r0.09b
    cpe:2.3:a:elm-chan:fatfs:r0.09b
  • Elm-Chan » Fatfs » Version: r0.10
    cpe:2.3:a:elm-chan:fatfs:r0.10
  • Elm-Chan » Fatfs » Version: r0.10a
    cpe:2.3:a:elm-chan:fatfs:r0.10a
  • Elm-Chan » Fatfs » Version: r0.10b
    cpe:2.3:a:elm-chan:fatfs:r0.10b
  • Elm-Chan » Fatfs » Version: r0.10c
    cpe:2.3:a:elm-chan:fatfs:r0.10c
  • Elm-Chan » Fatfs » Version: r0.11
    cpe:2.3:a:elm-chan:fatfs:r0.11
  • Elm-Chan » Fatfs » Version: r0.11a
    cpe:2.3:a:elm-chan:fatfs:r0.11a
  • Elm-Chan » Fatfs » Version: r0.12
    cpe:2.3:a:elm-chan:fatfs:r0.12
  • Elm-Chan » Fatfs » Version: r0.12a
    cpe:2.3:a:elm-chan:fatfs:r0.12a
  • Elm-Chan » Fatfs » Version: r0.12b
    cpe:2.3:a:elm-chan:fatfs:r0.12b
  • Elm-Chan » Fatfs » Version: r0.12c
    cpe:2.3:a:elm-chan:fatfs:r0.12c
  • Elm-Chan » Fatfs » Version: r0.13
    cpe:2.3:a:elm-chan:fatfs:r0.13
  • Elm-Chan » Fatfs » Version: r0.13a
    cpe:2.3:a:elm-chan:fatfs:r0.13a
  • Elm-Chan » Fatfs » Version: r0.13b
    cpe:2.3:a:elm-chan:fatfs:r0.13b
  • Elm-Chan » Fatfs » Version: r0.13c
    cpe:2.3:a:elm-chan:fatfs:r0.13c
  • Elm-Chan » Fatfs » Version: r0.14
    cpe:2.3:a:elm-chan:fatfs:r0.14
  • Elm-Chan » Fatfs » Version: r0.14a
    cpe:2.3:a:elm-chan:fatfs:r0.14a
  • Elm-Chan » Fatfs » Version: r0.14b
    cpe:2.3:a:elm-chan:fatfs:r0.14b
  • Elm-Chan » Fatfs » Version: r0.15
    cpe:2.3:a:elm-chan:fatfs:r0.15
  • Elm-Chan » Fatfs » Version: r0.15a
    cpe:2.3:a:elm-chan:fatfs:r0.15a
  • Elm-Chan » Fatfs » Version: r0.15b
    cpe:2.3:a:elm-chan:fatfs:r0.15b
  • Elm-Chan » Fatfs » Version: r0.16
    cpe:2.3:a:elm-chan:fatfs:r0.16


Contact Us

Shodan ® - All rights reserved