netapp active-iq-performance-analytics-services CVE-2018-20855 vulnerability in NetApp and Other Products
Published on July 26, 2019

product logo product logo product logo
An issue was discovered in the Linux kernel before 4.18.7. In create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never initialized, resulting in a leak of stack memory to userspace.

Vendor Advisory Vendor Advisory NVD


Products Associated with CVE-2018-20855

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-20855 are published in these products:

NetApp Active Iq Performance Analytics Services
 
NetApp Active Iq Unified Manager
 
NetApp Data Availability Services
 
NetApp Element Software
 
Linux Kernel
 
OpenSuse Leap
 

Exploit Probability

EPSS
0.11%
Percentile
29.40%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.