EUVD-2026-1111

Malicious code in shopify-perf-kit npm...

OESA-2025-2692 spdk security update

The Storage Performance Development Kit provides a set of tools and libraries for writing high performance, scalable, user-mode storage applications. Security Fixes: Storage Performance Development Kit SPDK 25.05 is vulnerable to Buffer Overflow in the NVMe-oF target component in SPDK -...

OESA-2025-2524 spdk security update

The Storage Performance Development Kit provides a set of tools and libraries for writing high performance, scalable, user-mode storage applications. Security Fixes: Storage Performance Development Kit SPDK 25.05 is vulnerable to Buffer Overflow in the NVMe-oF target component in SPDK -...

GHSA-5M5W-W2H2-FQGQ SPDK is vulnerable to buffer overflow in the NVMe-oF target component

Storage Performance Development Kit SPDK 25.05 is vulnerable to Buffer Overflow in the NVMe-oF target component in SPDK - lib/nvmf...

CVE-2025-57275

Storage Performance Development Kit SPDK 25.05 is vulnerable to Buffer Overflow in the NVMe-oF target component in SPDK - lib/nvmf...

CVE-2025-57275

Storage Performance Development Kit SPDK 25.05 is vulnerable to Buffer Overflow in the NVMe-oF target component in SPDK - lib/nvmf...

Storage Performance Development Kit 安全漏洞

Storage Performance Development Kit SPDK is a storage performance development kit from the SPDK community. The product is primarily used for writing high-performance, scalable user-mode storage applications. A security vulnerability exists in Storage Performance Development Kit SPDK version 25.05...

PT-2025-40249

Name of the Vulnerable Software and Affected Versions Storage Performance Development Kit SPDK version 25.05 Description The Storage Performance Development Kit SPDK version 25.05 contains a buffer overflow in the NVMe-oF target component, specifically within lib/nvmf. Recommendations At the...

Intel® NUC Firmware Advisory

Summary: Potential security vulnerabilities in some Intel® NUC BIOS firmware may allow escalation of privilege or information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2022-34301Non-Intel issued Description:...

WordPress Performance Kit Plugin <= 1.0.1 is vulnerable to Cross Site Scripting (XSS)

Software Performance Kit Type Plugin Vulnerable versions = 1.0.1 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID b28c91b23fa9 Credits Rafie Muhammad Patchstack Required...

WordPress Performance Kit plugin <= 1.0.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Performance Kit plugin versions = 1.0.1. Solution No patched version available...

AZL-38836 CVE-2021-28361 affecting package ceph for versions less than 18.2.2-1

An issue was discovered in Storage Performance Development Kit SPDK before 20.01.01. If a PDU is sent to the iSCSI target with a zero length but data is expected, the iSCSI target can crash with a NULL pointer dereference...

Storage Performance Development Kit Input Validation Error Vulnerability

Storage Performance Development Kit SPDK is a storage performance development kit from the SPDK community. The product is intended for writing high-performance, scalable user-mode storage applications. An input validation error vulnerability exists in versions of SPDK prior to 19.07, which can be...