Vulnerabilities > Netapp > Solidfire Baseboard Management Controller Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-11-14 CVE-2019-14591 Improper Input Validation vulnerability in multiple products
Improper input validation in the API for Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.
local
low complexity
intel netapp CWE-20
5.5
2019-11-14 CVE-2019-14590 Improper Privilege Management vulnerability in multiple products
Improper access control in the API for the Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable information disclosure via local access.
local
low complexity
intel netapp CWE-269
5.5
2019-11-14 CVE-2019-14574 Out-of-bounds Read vulnerability in multiple products
Out of bounds read in a subsystem for Intel(R) Graphics Driver versions before 26.20.100.7209 may allow an authenticated user to potentially enable denial of service via local access.
local
low complexity
intel netapp CWE-125
5.5
2019-11-14 CVE-2019-11113 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Buffer overflow in Kernel Mode module for Intel(R) Graphics Driver before version 25.20.100.6618 (DCH) or 21.20.x.5077 (aka15.45.5077) may allow a privileged user to potentially enable information disclosure via local access.
local
low complexity
intel netapp CWE-119
4.4
2019-11-14 CVE-2019-11089 Improper Input Validation vulnerability in multiple products
Insufficient input validation in Kernel Mode module for Intel(R) Graphics Driver before version 25.20.100.6519 may allow an authenticated user to potentially enable denial of service via local access.
local
low complexity
intel netapp CWE-20
5.5
2019-08-16 CVE-2019-15118 Uncontrolled Recursion vulnerability in multiple products
check_input_term in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion.
local
low complexity
linux canonical debian opensuse netapp CWE-674
5.5