NFS
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-0084 | Hig | 0.55 | 8.4 | 0.00 | May 1, 1990 | Certain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0. | ||
| CVE-2024-36939 | Med | 0.36 | 5.5 | 0.00 | May 30, 2024 | In the Linux kernel, the following vulnerability has been resolved: nfs: Handle error of rpc_proc_register() in nfs_net_init(). syzkaller reported a warning [0] triggered while destroying immature netns. rpc_proc_register() was called in init_nfs_fs(), but its error has been… | ||
| CVE-2021-47167 | 0.00 | — | 0.00 | Mar 25, 2024 | In the Linux kernel, the following vulnerability has been resolved: NFS: Fix an Oopsable condition in __nfs_pageio_add_request() Ensure that nfs_pageio_error_cleanup() resets the mirror array contents, so that the structure reflects the fact that it is now empty. Also change… | |||
| CVE-1999-0169 | 0.00 | — | 0.02 | Jul 1, 1997 | NFS allows attackers to read and write any file on the system by specifying a false UID. | |||
| CVE-1999-0165 | 0.00 | — | 0.02 | Mar 1, 1997 | NFS cache poisoning. | |||
| CVE-1999-0166 | 0.00 | — | 0.01 | Jan 1, 1997 | NFS allows users to use a "cd .." command to access other directories besides the exported file system. |
- risk 0.55cvss 8.4epss 0.00
Certain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0.
- risk 0.36cvss 5.5epss 0.00
In the Linux kernel, the following vulnerability has been resolved: nfs: Handle error of rpc_proc_register() in nfs_net_init(). syzkaller reported a warning [0] triggered while destroying immature netns. rpc_proc_register() was called in init_nfs_fs(), but its error has been…
- CVE-2021-47167Mar 25, 2024risk 0.00cvss —epss 0.00
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix an Oopsable condition in __nfs_pageio_add_request() Ensure that nfs_pageio_error_cleanup() resets the mirror array contents, so that the structure reflects the fact that it is now empty. Also change…
- CVE-1999-0169Jul 1, 1997risk 0.00cvss —epss 0.02
NFS allows attackers to read and write any file on the system by specifying a false UID.
- CVE-1999-0165Mar 1, 1997risk 0.00cvss —epss 0.02
NFS cache poisoning.
- CVE-1999-0166Jan 1, 1997risk 0.00cvss —epss 0.01
NFS allows users to use a "cd .." command to access other directories besides the exported file system.