Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
lvm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-0972
The lvmcreate_initrd script in the lvm package in Trustix Secure Linux 1.5 up to and including 2.1, and possibly other operating systems, allows local users to overwrite files via a symlink attack on temporary files.
Lvm Logical Volume Management Utilities 1.0.1
Lvm Logical Volume Management Utilities 1.0.4
Lvm Logical Volume Management Utilities 1.0.7
Lvm Logical Volume Management Utilities 1.0.8
Gentoo Linux
NA
CVE-2012-5625
OpenStack Compute (Nova) Folsom prior to 2012.2.2 and Grizzly, when using libvirt and LVM backed instances, does not properly clear physical volume (PV) content when reallocating for instances, which allows malicious users to obtain sensitive information by reading the memory of ...
Openstack Folsom 2012.2
Openstack Grizzly -
NA
CVE-2004-0545
LVM for AIX 5.1 and 5.2 allows local users to overwrite arbitrary files via a symlink attack.
Ibm Aix 5.1
Ibm Aix 5.2
NA
CVE-2004-0544
Multiple buffer overflows in LVM for AIX 5.1 and 5.2 allow local users to gain privileges via the (1) putlvcb or (2) getlvcb commands.
Ibm Aix 4.3.3
Ibm Aix 5.1
Ibm Aix 5.2
2 EDB exploits
5.5
CVSSv3
CVE-2017-0400
An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in Audioserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive dat...
Google Android 4.1
Google Android 4.2
Google Android 4.4.2
Google Android 5.0
Google Android 6.0.1
Google Android 7.1.0
Google Android 4.2.2
Google Android 4.3
Google Android 4.3.1
Google Android 4.4
Google Android 4.0
Google Android 4.0.1
Google Android 4.0.2
Google Android 4.0.3
Google Android 5.0.1
Google Android 5.1
Google Android 5.1.0
Google Android 6.0
Google Android 4.0.4
Google Android 4.1.2
Google Android 4.2.1
Google Android 4.4.1
5.5
CVSSv3
CVE-2017-0402
An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in Audioserver could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive dat...
Google Android
Google Android 7.0
5.5
CVSSv3
CVE-2017-0401
An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in the Qualcomm audio post processor could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used t...
Google Android
Google Android 7.0
5.5
CVSSv3
CVE-2017-0399
An information disclosure vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in the Qualcomm audio post processor could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used t...
Google Android
Google Android 7.0
7.8
CVSSv3
CVE-2017-0384
An elevation of privilege vulnerability in lvm/wrapper/Bundle/EffectBundle.cpp in libeffects in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gai...
Google Android 4.0.3
Google Android 4.1
Google Android 4.4
Google Android 4.4.2
Google Android 5.1.0
Google Android 6.0
Google Android 4.2
Google Android 4.2.1
Google Android 4.2.2
Google Android 4.3
Google Android 6.0.1
Google Android 7.0
Google Android 7.1.0
Google Android 4.0
Google Android 4.0.1
Google Android 4.0.2
Google Android 4.4.3
Google Android 4.4.4
Google Android 5.0
Google Android 5.0.1
Google Android 5.0.2
Google Android 4.0.4
NA
CVE-2011-4127
The Linux kernel prior to 3.2.2 does not properly restrict SG_IO ioctl calls, which allows local users to bypass intended restrictions on disk read and write operations by sending a SCSI command to (1) a partition block device or (2) an LVM volume.
Suse Linux Enterprise Server 10
Linux Linux Kernel 3.0.25
Linux Linux Kernel 3.1.2
Linux Linux Kernel 3.0
Linux Linux Kernel 3.0.22
Linux Linux Kernel 3.0.5
Linux Linux Kernel 3.1
Linux Linux Kernel 3.0.18
Linux Linux Kernel 3.0.6
Linux Linux Kernel 3.0.11
Linux Linux Kernel 3.0.34
Linux Linux Kernel 3.0.32
Linux Linux Kernel 3.0.19
Linux Linux Kernel
Linux Linux Kernel 3.0.4
Linux Linux Kernel 3.0.27
Linux Linux Kernel 3.0.23
Linux Linux Kernel 3.0.8
Linux Linux Kernel 3.0.33
Linux Linux Kernel 3.0.28
Linux Linux Kernel 3.0.13
Linux Linux Kernel 3.0.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started