Vulnerabilities > Spdk > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-08-12 | CVE-2019-14940 | Unspecified vulnerability in Spdk Storage Performance Development KIT In Storage Performance Development Kit (SPDK) before 19.07, a user of a vhost can cause a crash if the target is sent invalid input. | 6.5 |
| 2019-03-01 | CVE-2019-9547 | Excessive Iteration vulnerability in Spdk Storage Performance Development KIT In Storage Performance Development Kit (SPDK) before 19.01, a malicious vhost client (i.e., virtual machine) could carefully construct a circular descriptor chain that would result in a partial denial of service in the SPDK vhost target, because the vhost target did not properly detect such chains. | 5.3 |