CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-15880

In FreeBSD 12.1-STABLE before r356911, and 12.1-RELEASE before p5, insufficient checking in the cryptodev module allocated the size of a kernel buffer based on a user-supplied length allowing an unprivileged process to trigger a kernel panic.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://security.FreeBSD.org/advisories/FreeBSD-SA-20:16.cryptodev.asc
https://security.netapp.com/advisory/ntap-20200518-0008/
https://security.FreeBSD.org/advisories/FreeBSD-SA-20:16.cryptodev.asc
https://security.netapp.com/advisory/ntap-20200518-0008/

Products affected by CVE-2019-15880

Freebsd » Freebsd » Version: 12.1

cpe:2.3:o:freebsd:freebsd:12.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-15880

Products

Pricing

Contact Us