Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

48 matches found

OSV
OSVadded 2018/08/27 5:29 p.m.1 views

DEBIAN-CVE-2017-15139

A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain storage volume configurations to contain previous data. It specifically affects ScaleIO volumes using thin volumes and zero padding. This could lead to leakage of sensitive...

7.5CVSS5.2AI score0.00242EPSS
Exploits0References1
OSV
OSVadded 2018/08/27 5:29 p.m.2 views

UBUNTU-CVE-2017-15139

A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain storage volume configurations to contain previous data. It specifically affects ScaleIO volumes using thin volumes and zero padding. This could lead to leakage of sensitive...

7.5CVSS6.2AI score0.00242EPSS
Exploits0References3
CVE
CVEadded 2018/08/27 5:0 p.m.81 views

CVE-2017-15139

CVE-2017-15139 affects OpenStack Cinder up to Queens, specifically ScaleIO volumes using thin volumes with zero padding. The vulnerability can lead to leakage of sensitive data between tenants when new volumes are created in certain configurations. Public documentation in connected items confirms...

7.5CVSS7.2AI score0.00242EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2018/08/27 5:0 p.m.14 views

CVE-2017-15139

A vulnerability was found in openstack-cinder releases up to and including Queens, allowing newly created volumes in certain storage volume configurations to contain previous data. It specifically affects ScaleIO volumes using thin volumes and zero padding. This could lead to leakage of sensitive...

5.1CVSS7.3AI score0.00242EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2018/08/27 12:0 a.m.3 views

PT-2018-5782 · Openstack · Openstack Cinder

Name of the Vulnerable Software and Affected Versions: openstack-cinder versions up to and including Queens Description: A vulnerability was found in openstack-cinder, allowing newly created volumes in certain storage volume configurations to contain previous data. It specifically affects ScaleIO...

7.5CVSS5.1AI score0.00242EPSS
Exploits0References19
RedhatCVE
RedhatCVEadded 2018/08/21 9:18 a.m.26 views

CVE-2017-15139

An information-leak flaw was found in openstack-cinder deployments using the third-party EMC ScaleIO backend. It was possible for new volumes to contain previous data if they were created from storage pools which had disabled zero-padding. An attacker could exploit this flaw to obtain sensitive...

7.5CVSS0.3AI score0.00242EPSS
Exploits0References2
OSV
OSVadded 2018/01/10 10:29 p.m.1 views

CVE-2018-0014

Juniper Networks ScreenOS devices do not pad Ethernet packets with zeros, and thus some packets can contain fragments of system memory or data from previous packets. This issue is often detected as CVE-2003-0001. The issue affects all versions of Juniper Networks ScreenOS prior to 6.3.0r25...

6.5CVSS5.8AI score
Exploits0References2
RedHat Linux
RedHat Linuxadded 2011/07/15 5:14 a.m.3 views

kernel: sctp: fix to calc the INIT/INIT-ACK chunk length correctly to set

net/sctp/smmakechunk.c in the Linux kernel before 2.6.34, when addipenable and authenable are used, does not consider the amount of zero padding during calculation of chunk lengths for 1 INIT and 2 INIT ACK chunks, which allows remote attackers to cause a denial of service OOPS via crafted packet...

5.9CVSS7.2AI score0.00751EPSS
Exploits1References4
Rows per page
Query Builder