Search Results (Refine Search)
- CPE Product Version: cpe:/a:openafs:openafs:1.8.2
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2019-18603 |
OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to information leakage upon certain error conditions because uninitialized RPC output variables are sent over the network to a peer. Published: October 29, 2019; 3:15:19 PM -0400 |
V3.1: 5.9 MEDIUM V2.0: 4.3 MEDIUM |
CVE-2019-18602 |
OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to an information disclosure vulnerability because uninitialized scalars are sent over the network to a peer. Published: October 29, 2019; 3:15:19 PM -0400 |
V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
CVE-2019-18601 |
OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to denial of service from unserialized data access because remote attackers can make a series of VOTE_Debug RPC calls to crash a database server within the SVOTE_Debug RPC handler. Published: October 29, 2019; 3:15:19 PM -0400 |
V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |