Vulnerability Details CVE-2019-14940
In Storage Performance Development Kit (SPDK) before 19.07, a user of a vhost can cause a crash if the target is sent invalid input.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.5%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
Products affected by CVE-2019-14940
-
cpe:2.3:a:spdk:storage_performance_development_kit:1.0.0
-
cpe:2.3:a:spdk:storage_performance_development_kit:1.2.0
-
cpe:2.3:a:spdk:storage_performance_development_kit:16.06
-
cpe:2.3:a:spdk:storage_performance_development_kit:16.08
-
cpe:2.3:a:spdk:storage_performance_development_kit:16.12
-
cpe:2.3:a:spdk:storage_performance_development_kit:17.03
-
cpe:2.3:a:spdk:storage_performance_development_kit:17.07
-
cpe:2.3:a:spdk:storage_performance_development_kit:17.07.1
-
cpe:2.3:a:spdk:storage_performance_development_kit:17.10
-
cpe:2.3:a:spdk:storage_performance_development_kit:17.10.1
-
cpe:2.3:a:spdk:storage_performance_development_kit:18.01
-
cpe:2.3:a:spdk:storage_performance_development_kit:18.01.1
-
cpe:2.3:a:spdk:storage_performance_development_kit:18.04
-
cpe:2.3:a:spdk:storage_performance_development_kit:18.04.1
-
cpe:2.3:a:spdk:storage_performance_development_kit:18.07
-
cpe:2.3:a:spdk:storage_performance_development_kit:18.07.1
-
cpe:2.3:a:spdk:storage_performance_development_kit:18.10
-
cpe:2.3:a:spdk:storage_performance_development_kit:18.10.1
-
cpe:2.3:a:spdk:storage_performance_development_kit:19.01
-
cpe:2.3:a:spdk:storage_performance_development_kit:19.04
-
cpe:2.3:a:spdk:storage_performance_development_kit:19.04.1