Netapp

Steelstore Cloud Integrated Storage

211 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2019-14574

  • EPSS 0.15%
  • Veröffentlicht 14.11.2019 20:15:11
  • Zuletzt bearbeitet 21.11.2024 04:26:58

Out of bounds read in a subsystem for Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.

5.5

CVE-2019-14590

  • EPSS 0.19%
  • Veröffentlicht 14.11.2019 20:15:11
  • Zuletzt bearbeitet 21.11.2024 04:26:59

Improper access control in the API for the Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable information disclosure via local access.

5.5

CVE-2019-14591

  • EPSS 0.16%
  • Veröffentlicht 14.11.2019 20:15:11
  • Zuletzt bearbeitet 21.11.2024 04:26:59

Improper input validation in the API for Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.

7.8

CVE-2019-11112

  • EPSS 0.24%
  • Veröffentlicht 14.11.2019 19:15:13
  • Zuletzt bearbeitet 21.11.2024 04:20:33

Memory corruption in Kernel Mode Driver in Intel(R) Graphics Driver before 26.20.100.6813 (DCH) or 26.20.100.6812 may allow an authenticated user to potentially enable escalation of privilege via local access.

9.8

CVE-2019-18805

  • EPSS 0.57%
  • Veröffentlicht 07.11.2019 14:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:36

An issue was discovered in net/ipv4/sysctl_net_ipv4.c in the Linux kernel before 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen...

7

CVE-2019-18683

Exploit
  • EPSS 1.06%
  • Veröffentlicht 04.11.2019 16:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:31

An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions where local users have /dev/video0 access, but only if the driver happens to be loaded. ...

9.8

CVE-2019-17531

  • EPSS 1.13%
  • Veröffentlicht 12.10.2019 21:15:08
  • Zuletzt bearbeitet 21.11.2024 04:32:27

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled (either globally or for a specific property) for an externally exposed JSON endpoint and the service has the apache-log4j-ext...

7.8

CVE-2019-2215

Warnung Exploit
  • EPSS 51.81%
  • Veröffentlicht 11.10.2019 19:15:10
  • Zuletzt bearbeitet 24.10.2025 14:11:31

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local appli...

7.8

CVE-2019-16905

Exploit
  • EPSS 0.2%
  • Veröffentlicht 09.10.2019 20:15:23
  • Zuletzt bearbeitet 23.04.2025 16:15:20

OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution...

9.8

CVE-2019-17267

  • EPSS 1.2%
  • Veröffentlicht 07.10.2019 00:15:10
  • Zuletzt bearbeitet 21.11.2024 04:31:59

A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. It is related to net.sf.ehcache.hibernate.EhcacheJtaTransactionManagerLookup.