Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10220
Source: MITRE
Published: 2019-11-27
Updated: 2020-01-03
Type: CWE-22
Base Score: 9.3
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 8.6
Severity: HIGH
Base Score: 8.8
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 2.8
Severity: HIGH
OR
ID | Name | Product | Family | Severity |
---|---|---|---|---|
137516 | EulerOS 2.0 SP2 : kernel (EulerOS-SA-2020-1674) | Nessus | Huawei Local Security Checks | critical |
136239 | EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2020-1536) | Nessus | Huawei Local Security Checks | critical |
135614 | EulerOS Virtualization 3.0.2.2 : kernel (EulerOS-SA-2020-1452) | Nessus | Huawei Local Security Checks | high |
135525 | EulerOS 2.0 SP3 : kernel (EulerOS-SA-2020-1396) | Nessus | Huawei Local Security Checks | critical |
134240 | Debian DLA-2114-1 : linux-4.9 security update | Nessus | Debian Local Security Checks | critical |
133101 | Debian DLA-2068-1 : linux security update | Nessus | Debian Local Security Checks | critical |
132925 | SUSE SLES12 Security Update : kernel (SUSE-SU-2020:0093-1) | Nessus | SuSE Local Security Checks | critical |
132690 | Ubuntu 18.04 LTS / 19.04 : linux, linux-aws, linux-aws-5.0, linux-azure, linux-gcp, linux-gke-5.0, (USN-4226-1) | Nessus | Ubuntu Local Security Checks | critical |
132605 | EulerOS 2.0 SP8 : kernel (EulerOS-SA-2020-1012) | Nessus | Huawei Local Security Checks | critical |
132360 | EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-2693) | Nessus | Huawei Local Security Checks | high |
132071 | SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:3295-1) | Nessus | SuSE Local Security Checks | high |
132008 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3263-1) | Nessus | SuSE Local Security Checks | high |
132007 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3261-1) | Nessus | SuSE Local Security Checks | high |
132006 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3260-1) | Nessus | SuSE Local Security Checks | high |
132005 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3258-1) | Nessus | SuSE Local Security Checks | high |
132002 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3233-1) | Nessus | SuSE Local Security Checks | high |
132001 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3232-1) | Nessus | SuSE Local Security Checks | high |
132000 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3230-1) | Nessus | SuSE Local Security Checks | high |
131999 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3228-1) | Nessus | SuSE Local Security Checks | high |
131833 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:3200-1) | Nessus | SuSE Local Security Checks | high |
131120 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:2984-1) | Nessus | SuSE Local Security Checks | critical |
131061 | openSUSE Security Update : the Linux Kernel (openSUSE-2019-2507) | Nessus | SuSE Local Security Checks | high |
131057 | openSUSE Security Update : the Linux Kernel (openSUSE-2019-2503) | Nessus | SuSE Local Security Checks | high |
130951 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:2953-1) | Nessus | SuSE Local Security Checks | high |
130950 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:2950-1) (SACK Panic) | Nessus | SuSE Local Security Checks | critical |
130949 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:2949-1) | Nessus | SuSE Local Security Checks | critical |
130948 | SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2019:2948-1) | Nessus | SuSE Local Security Checks | high |
130947 | SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:2947-1) | Nessus | SuSE Local Security Checks | high |
130946 | SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2019:2946-1) | Nessus | SuSE Local Security Checks | high |
130424 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:2829-1) | Nessus | SuSE Local Security Checks | high |
130423 | SUSE SLES12 Security Update : kernel (SUSE-SU-2019:2821-1) (SACK Panic) (SACK Slowness) | Nessus | SuSE Local Security Checks | high |