Lucene search
K

48 matches found

Microsoft CVE
Microsoft CVE
added 2021/01/29 8:0 a.m.5 views

fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8 when there is an NFS export of a subdirectory of a filesystem allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. NOTE: some parties argue that such a subdirectory export is not intended to prevent this attack; see also the exports(5) no_subtree_check default behavior

...

6.5CVSS7AI score0.02417EPSS
Exploits0
OSV
OSV
added 2021/01/19 7:15 a.m.6 views

CVE-2021-3178

fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. NOTE: some parties argue that such a subdirectory export is not intended to prevent this attac...

6.5CVSS7.5AI score
Exploits0References4
OSV
OSV
added 2021/01/19 7:15 a.m.0 views

DEBIAN-CVE-2021-3178

fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. NOTE: some parties argue that such a subdirectory export is not intended to prevent this attac...

6.5CVSS6.5AI score0.02417EPSS
Exploits0References1
Prion
Prion
added 2021/01/19 7:15 a.m.26 views

Default credentials

DISPUTED fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. NOTE: some parties argue that such a subdirectory export is not intended to prevent...

5.5CVSS6.4AI score0.02417EPSS
Exploits0References4Affected Software3
Cvelist
Cvelist
added 2021/01/19 6:44 a.m.21 views

CVE-2021-3178

fs/nfsd/nfs3xdr.c in the Linux kernel through 5.10.8, when there is an NFS export of a subdirectory of a filesystem, allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS. NOTE: some parties argue that such a subdirectory export is not intended to prevent this attac...

7.3AI score0.02417EPSS
Exploits0References4
CVE
CVE
added 2021/01/19 6:44 a.m.261 views

CVE-2021-3178

CVE-2021-3178 affects the Linux kernel NFSv3 export path: when exporting a subdirectory, READDIRPLUS can leak the parent directory file handle, allowing a client to access files outside the exported subtree. Descriptions note this through kernel 5.10.8; some advisories reference fixes in patched ...

6.5CVSS6.5AI score0.02417EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2021/01/12 12:0 a.m.9 views

PT-2021-2999 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions through 5.10.8 Description: The issue is related to the fs/nfsd/nfs3xdr.c component in the Linux kernel, which allows remote attackers to traverse to other parts of the filesystem via READDIRPLUS when there is an NFS...

9.8CVSS6.2AI score0.78684EPSS
Exploits152References891
RedHat Linux
RedHat Linux
added 2020/05/12 3:16 p.m.3 views

kernel: denial of service in in xfs_setattr_nonsize in fs/xfs/xfs_iops.c

A flaw was found in the XFS file system in the Linux kernel. An acquired ILOCK was not freed/unlock when the call to xfsqmvopchownreserve fails and the lock is still held and can lead to denial to access for that device. This is primarily a local denial of service but could result in a remote...

7.8CVSS7.1AI score0.03916EPSS
Exploits0References4
CVE
CVE
added 2017/12/20 11:0 p.m.50 views

CVE-2017-14387

The CVE-2017-14387 issue concerns EMC Isilon OneFS NFS exports. The affected products are OneFS versions 8.1.0.0, 8.0.1.0–8.0.1.1, and 8.0.0.0–8.0.0.4. The flaw is that changes to the default NFS export security flavor are not consistently propagated to all new and existing NFS exports configured...

6.5CVSS6.4AI score0.00914EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2017/12/20 12:0 a.m.2 views

EMC Isilon OneFS NFS Export Security Bypass Vulnerability

EMC Isilon OneFS is a distributed file system that supports EMC Isilon Horizontally Scalable Storage System from EMC Corporation. The system combines the three layers of a traditional storage architecture file system, volume manager and data protection into a single unified software layer to crea...

6.5CVSS6.8AI score0.00914EPSS
Exploits0References1
Prion
Prion
added 2017/05/19 3:29 p.m.14 views

Privilege escalation

EMC Isilon OneFS 8.0.1.0, OneFS 8.0.0.0 - 8.0.0.2, OneFS 7.2.1.0 - 7.2.1.3, and OneFS 7.2.0.x is affected by an NFS export vulnerability. Under certain conditions, after upgrading a cluster from OneFS 7.1.1.x or earlier, users may have unexpected levels of access to some NFS exports...

4.6CVSS6.9AI score0.00827EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2017/05/19 3:29 p.m.11 views

CVE-2017-4979

EMC Isilon OneFS 8.0.1.0, OneFS 8.0.0.0 - 8.0.0.2, OneFS 7.2.1.0 - 7.2.1.3, and OneFS 7.2.0.x is affected by an NFS export vulnerability. Under certain conditions, after upgrading a cluster from OneFS 7.1.1.x or earlier, users may have unexpected levels of access to some NFS exports...

7.1CVSS6.9AI score0.00827EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/05/19 3:0 p.m.18 views

CVE-2017-4979

EMC Isilon OneFS 8.0.1.0, OneFS 8.0.0.0 - 8.0.0.2, OneFS 7.2.1.0 - 7.2.1.3, and OneFS 7.2.0.x is affected by an NFS export vulnerability. Under certain conditions, after upgrading a cluster from OneFS 7.1.1.x or earlier, users may have unexpected levels of access to some NFS exports...

6.9AI score0.00827EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2016/08/29 12:0 a.m.60 views

SUSE SLES11 Security Update : kernel (SUSE-SU-2016:1672-1)

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security and bugfixes. Notable changes in this kernel : - It is now possible to mount a NFS export on the exporting host directly. The following security bugs were fixed : - CVE-2016-5244: A kernel information leak in...

8.4CVSS6.8AI score0.05521EPSS
Exploits37References149
OpenVAS
OpenVAS
added 2013/08/27 12:0 a.m.27 views

Debian Security Advisory DSA 2743-1 (kfreebsd-9 - privilege escalation/information leak)

Several vulnerabilities have been discovered in the FreeBSD kernel that may lead to a privilege escalation or information leak. The Common Vulnerabilities and Exposures project identifies the following problems: CVE-2013-3077 Clement Lecigne from the Google Security Team reported an integer...

7.8CVSS0.02511EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.34 views

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20120710)

The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues : - A NULL pointer dereference flaw was found in the nfctfrag6reasm function in the Linux kernel's netfilter IPv6 connection tracking implementation. A remote...

7.8CVSS6.6AI score0.04433EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2012/07/16 12:0 a.m.30 views

RedHat Update for kernel RHSA-2012:1064-01

Check for the Version of kernel OpenVAS Vulnerability Test RedHat Update for kernel RHSA-2012:1064-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

7.8CVSS0.7AI score0.04433EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2012/07/16 12:0 a.m.32 views

RedHat Update for kernel RHSA-2012:1064-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.8CVSS8AI score0.04433EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2012/07/12 12:0 a.m.65 views

CentOS 6 : kernel (CESA-2012:1064)

Updated kernel packages that fix two security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

7.8CVSS6.6AI score0.04433EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2012/07/11 12:0 a.m.34 views

RHEL 6 : kernel (RHSA-2012:1064)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:1064 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. This update fixes the following security issues: A NUL...

7.8CVSS6.6AI score0.04433EPSS
Exploits1References7
Rows per page
Query Builder