Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10009 matches found

Prion
Prionadded 2020/01/27 5:15 a.m.10 views

Out-of-bounds

In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic via a modified lmbufcount field due to the lack of validation for specific fields of packets sent by a client. This is caused by interaction between sptlrpcsvcunwraprequest and lustremsghdrsizev2...

7.8CVSS7.4AI score0.0066EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCveadded 2020/01/27 5:15 a.m.20 views

CVE-2019-20428

In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic due to the lack of validation for specific fields of packets sent by a client. The ldlrequestcancel function mishandles a large lockcount parameter...

7.8CVSS7AI score0.0066EPSS
Exploits0References5
UbuntuCve
UbuntuCveadded 2020/01/27 5:15 a.m.16 views

CVE-2019-20431

In the Lustre file system before 2.12.3, the ptlrpc module has an osdmapremotetolocal out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. osdbufsget in the osdldiskfs module does not validate a certain length value...

7.8CVSS7AI score0.0066EPSS
Exploits1References5
OSV
OSVadded 2020/01/27 5:15 a.m.0 views

UBUNTU-CVE-2019-20425

In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function lustremsgstring, there is no validation of a certain length value derived from lustremsgbuflenv2...

7.5CVSS7.1AI score0.0066EPSS
Exploits1References6
Prion
Prionadded 2020/01/27 5:15 a.m.8 views

Out-of-bounds

In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function lustremsgstring, there is no validation of a certain length value derived from lustremsgbuflenv2...

7.8CVSS7.5AI score0.0066EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2020/01/27 4:21 a.m.97 views

CVE-2019-20423

CVE-2019-20423 affects the Lustre file system prior to 2.12.3, where the ptlrpc module can overflow the buffer and panic due to lacking validation of certain fields in client packets. The root cause is an integer signedness error in target_handle_connect() that mishandles a specific size value wh...

7.8CVSS7.8AI score0.00619EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2020/01/27 4:21 a.m.106 views

CVE-2019-20425

CVE-2019-20425 affects Lustre file system ptlrpc module prior to 2.12.3, where an out-of-bounds access and panic arise from insufficient validation of certain fields in client packets, specifically due to lack of validation of a length value derived from lustre_msg_buflen_v2 in lustre_msg_string....

7.8CVSS7.5AI score0.0066EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2020/01/27 4:21 a.m.11 views

CVE-2019-20426

In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function ldlmcancelhpreqcheck, there is no lockcount bounds check...

7.6AI score0.0066EPSS
Exploits1References4
CVE
CVEadded 2020/01/27 4:21 a.m.118 views

CVE-2019-20426

CVE-2019-20426 affects the Lustre file system before 2.12.3. The ptlrpc module suffers an out-of-bounds access and potential panic due to missing validation of specific client packet fields; specifically, in ldlm_cancel_hpreq_check there is no bounds check on the lock_count. The Red Hat advisory ...

7.8CVSS7.5AI score0.0066EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2020/01/27 4:20 a.m.101 views

CVE-2019-20427

CVE-2019-20427 affects Lustre before version 2.12.3, where the ptlrpc module may overflow buffers and panic, with potential remote code execution due to insufficient validation of certain client packet fields. The root cause is described as an integer signedness error arising from the interaction...

9.8CVSS9.9AI score0.03698EPSS
Exploits1References4Affected Software1
CVE
CVEadded 2020/01/27 4:20 a.m.93 views

CVE-2019-20428

CVE-2019-20428 affects Lustre prior to 2.12.3. The ptlrpc module can trigger an out-of-bounds read and panic due to insufficient validation of certain client packet fields, with the ldl_request_cancel function mishandling a large lock_count. Impact is a potential crash/denial of service as descri...

7.8CVSS7.4AI score0.0066EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2020/01/27 4:20 a.m.16 views

CVE-2019-20428

In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic due to the lack of validation for specific fields of packets sent by a client. The ldlrequestcancel function mishandles a large lockcount parameter...

7.5AI score0.0066EPSS
Exploits0References4
CVE
CVEadded 2020/01/27 4:20 a.m.105 views

CVE-2019-20429

The CVE-2019-20429 issue is in Lustre prior to version 2.12.3, where the ptlrpc module can perform an out-of-bounds read and panic. The root cause is a lack of validation for specific client packet fields, caused by interaction between sptlrpc_svc_unwrap_request and lustre_msg_hdr_size_v2. Conseq...

7.8CVSS7.4AI score0.0066EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2020/01/27 4:19 a.m.10 views

CVE-2019-20432

In the Lustre file system before 2.12.3, the mdt module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. mdtfilesecctxunpack does not validate the value of namesize derived from reqcapsulegetsize...

7.6AI score0.00614EPSS
Exploits1References4
CVE
CVEadded 2020/01/27 4:19 a.m.96 views

CVE-2019-20432

The CVE-2019-20432 vulnerability affects Lustre prior to 2.12.3, specifically the mdt module. The issue is an out-of-bounds access/panic caused by insufficient validation of fields in client packets, where mdt_file_secctx_unpack does not validate the name_size derived from req_capsule_get_size. T...

7.8CVSS7.5AI score0.00614EPSS
Exploits1References4Affected Software1
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.42 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1533)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS8.6AI score0.49911EPSS
Exploits29References4
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1587)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8CVSS8.3AI score0.06933EPSS
Exploits11References2
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.47 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1535)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.2AI score0.02973EPSS
Exploits18References2
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.40 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1636)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7.2AI score0.06933EPSS
Exploits10References2
OpenVAS
OpenVASadded 2020/01/23 12:0 a.m.33 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2018-1085)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.7CVSS7.2AI score0.05036EPSS
Exploits0References2
Rows per page
Query Builder