Netapp

Steelstore Cloud Integrated Storage

211 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-14574

  • EPSS 0.15%
  • Published 14.11.2019 20:15:11
  • Last modified 21.11.2024 04:26:58

Out of bounds read in a subsystem for Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.

5.5

CVE-2019-14590

  • EPSS 0.19%
  • Published 14.11.2019 20:15:11
  • Last modified 21.11.2024 04:26:59

Improper access control in the API for the Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable information disclosure via local access.

5.5

CVE-2019-14591

  • EPSS 0.16%
  • Published 14.11.2019 20:15:11
  • Last modified 21.11.2024 04:26:59

Improper input validation in the API for Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.

7.8

CVE-2019-11112

  • EPSS 0.24%
  • Published 14.11.2019 19:15:13
  • Last modified 21.11.2024 04:20:33

Memory corruption in Kernel Mode Driver in Intel(R) Graphics Driver before 26.20.100.6813 (DCH) or 26.20.100.6812 may allow an authenticated user to potentially enable escalation of privilege via local access.

9.8

CVE-2019-18805

  • EPSS 0.57%
  • Published 07.11.2019 14:15:11
  • Last modified 21.11.2024 04:33:36

An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen...

7

CVE-2019-18683

Exploit
  • EPSS 1.06%
  • Published 04.11.2019 16:15:11
  • Last modified 21.11.2024 04:33:31

An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions where local users have /dev/video0 access, but only if the driver happens to be loaded. ...

9.8

CVE-2019-17531

  • EPSS 1.19%
  • Published 12.10.2019 21:15:08
  • Last modified 21.11.2024 04:32:27

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has the apache-log4j-ext...

7.8

CVE-2019-2215

Warning Exploit
  • EPSS 49.83%
  • Published 11.10.2019 19:15:10
  • Last modified 04.04.2025 15:40:44

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local appli...

7.8

CVE-2019-16905

Exploit
  • EPSS 0.2%
  • Published 09.10.2019 20:15:23
  • Last modified 23.04.2025 16:15:20

OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution...

9.8

CVE-2019-17267

  • EPSS 1.36%
  • Published 07.10.2019 00:15:10
  • Last modified 21.11.2024 04:31:59

A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to net.sf.ehcache.hibernate.EhcacheJtaTransactionManagerLookup.