Skip to main content

Storage Performance Development Kit

3 CVEs product

Monthly

CVE-2021-28361 HIGH This Week

An issue was discovered in Storage Performance Development Kit (SPDK) before 20.01.01. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Storage Performance Development Kit
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
CVE-2019-14940 MEDIUM This Month

In Storage Performance Development Kit (SPDK) before 19.07, a user of a vhost can cause a crash if the target is sent invalid input. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Storage Performance Development Kit
NVD GitHub
CVSS 3.0
6.5
EPSS
1.2%
CVE-2019-9547 MEDIUM This Month

In Storage Performance Development Kit (SPDK) before 19.01, a malicious vhost client (i.e., virtual machine) could carefully construct a circular descriptor chain that would result in a partial. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Storage Performance Development Kit
NVD GitHub
CVSS 3.0
5.3
EPSS
1.5%
EPSS 1% CVSS 7.5
HIGH This Week

An issue was discovered in Storage Performance Development Kit (SPDK) before 20.01.01. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Null Pointer Dereference Denial Of Service Storage Performance Development Kit
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM This Month

In Storage Performance Development Kit (SPDK) before 19.07, a user of a vhost can cause a crash if the target is sent invalid input. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Storage Performance Development Kit
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM This Month

In Storage Performance Development Kit (SPDK) before 19.01, a malicious vhost client (i.e., virtual machine) could carefully construct a circular descriptor chain that would result in a partial. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Storage Performance Development Kit
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy