CVE-2019-20425

EPSS 0.66% · P71 Updated Feb 23, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-20425

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function lustre_msg_string, there is no validation of a certain length value derived from lustre_msg_buflen_v2.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Lustre ptlrpc模块缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Lustre是Lustre社区的一款为大规模计算系统提供一个全局一致的与POSIX兼容的分布式并行文件系统。 Lustre 2.12.3之前版本中的ptlrpc模块的‘lustre_msg_string’函数存在缓冲区错误漏洞，该漏洞源于程序没有验证数据包的特定字段。远程攻击者可借助特制数据包利用该漏洞导致系统崩溃。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2019-20425

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2019-20425

请登录查看更多情报信息。

https://review.whamcloud.com/#/c/36209/x_refsource_MISC
https://jira.whamcloud.com/browse/LU-12613x_refsource_MISC
http://lustre.org/x_refsource_MISC
http://wiki.lustre.org/Lustre_2.12.3_Changelogx_refsource_MISC
https://nvd.nist.gov/vuln/detail/CVE-2019-20425

Same Patch Batch · n/a · 2020-01-27 · 75 CVEs total

CVE-2019-11318		Zimbra Collaboration Suite 跨站脚本漏洞
CVE-2019-20441		WSO2 API Manager 跨站脚本漏洞
CVE-2020-8087		SMC Networks D3G0804W 安全漏洞
CVE-2014-8563		Zimbra Collaboration Suite 操作系统命令注入漏洞
CVE-2019-8945		Zimbra Collaboration Suite 跨站脚本漏洞
CVE-2019-8946		Zimbra Collaboration Suite 跨站脚本漏洞
CVE-2019-8947		Zimbra Collaboration Suite 跨站脚本漏洞
CVE-2018-19441		Neato Robotics Neato Botvac Connected 安全特征问题漏洞
CVE-2015-2249		Zimbra Collaboration Suite 跨站脚本漏洞
CVE-2014-5500		Zimbra Collaboration Suite 跨站脚本漏洞
CVE-2020-8088		UseBB 安全漏洞
CVE-2019-12427		Zimbra Collaboration Suite 跨站脚本漏洞
CVE-2019-15313		Zimbra Collaboration Suite 跨站脚本漏洞
CVE-2019-19143		TP-LINK TL-WR849N 访问控制错误漏洞
CVE-2019-19539		多款HPE产品安全漏洞
CVE-2014-3979		Bytemark Symbiosis 安全漏洞
CVE-2019-19822		多款TotoLink产品访问控制错误漏洞
CVE-2019-19823		TotoLink A3002RU 安全漏洞
CVE-2013-4770		Eucalyptus Management Console 跨站脚本漏洞
CVE-2013-7390		ZOHO ManageEngine DesktopCentral 代码问题漏洞

Showing top 20 of 75 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2019-20425

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2019-20425

I. Basic Information for CVE-2019-20425

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2019-20425

III. Intelligence Information for CVE-2019-20425

Same Patch Batch · n/a · 2020-01-27 · 75 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2019-20425

Leave a comment