Vulnerabilities > Mdadm Project

DATE CVE VULNERABILITY TITLE RISK
2023-08-11 CVE-2023-28736 Classic Buffer Overflow vulnerability in Mdadm Project Mdadm
Buffer overflow in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
mdadm-project CWE-120
6.7
2023-08-11 CVE-2023-28938 Resource Exhaustion vulnerability in Mdadm Project Mdadm
Uncontrolled resource consumption in some Intel(R) SSD Tools software before version mdadm-4.2-rc2 may allow a priviledged user to potentially enable denial of service via local access.
local
low complexity
mdadm-project CWE-400
4.4
2018-06-08 CVE-2014-5220 Command Injection vulnerability in multiple products
The mdcheck script of the mdadm package for openSUSE 13.2 prior to version 3.3.1-5.14.1 does not properly sanitize device names, which allows local attackers to execute arbitrary commands as root.
local
low complexity
opensuse mdadm-project CWE-77
7.8