CVE-2019-14815

CVSS v3.1 7.8 (High)

CVSS v2.0 7.2 (High)

EPSS 0.07 % (32^th)

Affected Products 18

Advisories 40

A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Driver.

Weaknesses

CWE-122: Heap-based Buffer Overflow
CWE-787: Out-of-bounds Write

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2019-11-25 11:15:11
(4 years ago)
Updated Date: 2023-07-13 13:33:05
(14 months ago)

Affected Products

Linux

Linux Kernel

Netapp

Redhat

Configuration #1

	CPE23	From	Up To
Linux Kernel from 4.10 version and prior 4.14.146 version	cpe:2.3:o:linux:linux_kernel	>= 4.10	< 4.14.146
Linux Kernel from 4.15 version and prior 4.19.75 version	cpe:2.3:o:linux:linux_kernel	>= 4.15	< 4.19.75
Linux Kernel from 4.20 version and prior 5.2.17 version	cpe:2.3:o:linux:linux_kernel	>= 4.20	< 5.2.17

Configuration #2

		CPE23	From	Up To
	Redhat Codeready Linux Builder Eus 8.1	cpe:2.3:a:redhat:codeready_linux_builder_eus:8.1
	Redhat Codeready Linux Builder Eus 8.2	cpe:2.3:a:redhat:codeready_linux_builder_eus:8.2
	Redhat Codeready Linux Builder Eus 8.4	cpe:2.3:a:redhat:codeready_linux_builder_eus:8.4
	Redhat Codeready Linux Builder Eus 8.6	cpe:2.3:a:redhat:codeready_linux_builder_eus:8.6
	Redhat Codeready Linux Builder for Power Little Endian Eus 8.1	cpe:2.3:a:redhat:codeready_linux_builder_for_power_little_endian_eus:8.1
	Redhat Codeready Linux Builder for Power Little Endian Eus 8.2	cpe:2.3:a:redhat:codeready_linux_builder_for_power_little_endian_eus:8.2
	Redhat Codeready Linux Builder for Power Little Endian Eus 8.4	cpe:2.3:a:redhat:codeready_linux_builder_for_power_little_endian_eus:8.4
	Redhat Codeready Linux Builder for Power Little Endian Eus 8.6	cpe:2.3:a:redhat:codeready_linux_builder_for_power_little_endian_eus:8.6
	Redhat Enterprise Linux 5	cpe:2.3:o:redhat:enterprise_linux:5
	Redhat Enterprise Linux 6.0	cpe:2.3:o:redhat:enterprise_linux:6.0
	Redhat Enterprise Linux 7.0	cpe:2.3:o:redhat:enterprise_linux:7.0
	Redhat Enterprise Linux 8.0	cpe:2.3:o:redhat:enterprise_linux:8.0
	Redhat Enterprise Linux for Ibm Z Systems (structure A) 7 S390x	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_\%28structure_a\%29:7_s390x
	Redhat Enterprise Linux for Ibm Z Systems Eus 8.1	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.1
	Redhat Enterprise Linux for Ibm Z Systems Eus 8.2	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.2
	Redhat Enterprise Linux for Ibm Z Systems Eus 8.4	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.4
	Redhat Enterprise Linux for Ibm Z Systems Eus 8.6	cpe:2.3:o:redhat:enterprise_linux_for_ibm_z_systems_eus:8.6
	Redhat Enterprise Linux for Real Time 8	cpe:2.3:o:redhat:enterprise_linux_for_real_time:8
	Redhat Enterprise Linux for Real Time For Nfv 8	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv:8
	Redhat Enterprise Linux for Real Time For Nfv Tus 8.2	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.2
	Redhat Enterprise Linux for Real Time For Nfv Tus 8.4	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.4
	Redhat Enterprise Linux for Real Time For Nfv Tus 8.6	cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.6
	Redhat Enterprise Linux for Real Time Tus 8.2	cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.2
	Redhat Enterprise Linux for Real Time Tus 8.4	cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.4
	Redhat Enterprise Linux for Real Time Tus 8.6	cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.6
	Redhat Enterprise Linux Server Aus 8.2	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2
	Redhat Enterprise Linux Server Aus 8.4	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4
	Redhat Enterprise Linux Server Aus 8.6	cpe:2.3:o:redhat:enterprise_linux_server_aus:8.6
	Redhat Enterprise Linux Server Tus 8.2	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2
	Redhat Enterprise Linux Server Tus 8.4	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4
	Redhat Enterprise Linux Server Tus 8.6	cpe:2.3:o:redhat:enterprise_linux_server_tus:8.6

Configuration #3

		CPE23	From	Up To
	Netapp Altavault	cpe:2.3:a:netapp:altavault:-
	Netapp Hci	cpe:2.3:a:netapp:hci:-
	Netapp Solidfire	cpe:2.3:a:netapp:solidfire:-
	Netapp Steelstore	cpe:2.3:a:netapp:steelstore:-
	Netapp Baseboard Management Controller	cpe:2.3:h:netapp:baseboard_management_controller:-
	Netapp Solidfire Baseboard Management Controller Firmware	cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-