Exploitation Summary
EIP tracks 1 public exploit for CVE-2019-10220. PoCs published by Trinadh465.
AI-analyzed exploit summary The repository contains only documentation files and build scripts from a Linux kernel version, with no exploit code or technical analysis related to CVE-2019-10220. It appears to be a partial or mislabeled kernel source dump.
Description
Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists.
Exploits (1)
nomisec
STUB
by Trinadh465 · poc
https://github.com/Trinadh465/linux-3.0.35_CVE-2019-10220
The repository contains only documentation files and build scripts from a Linux kernel version, with no exploit code or technical analysis related to CVE-2019-10220. It appears to be a partial or mislabeled kernel source dump.
Classification
Stub 90%
Attack Type
Other
Complexity
N/a
Reliability
N/a
Target:
Linux kernel 3.0.35
No auth needed
devstral-2 · analyzed Feb 18, 2026
Full analysis →
References (5)
Core 5
Core References
Issue Tracking, Patch, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10220
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20200103-0001/
Third Party Advisory vendor-advisory
x_refsource_ubuntu
https://usn.ubuntu.com/4226-1/
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2020/01/msg00013.html
Mailing List, Third Party Advisory mailing-list
x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html
Scores
CVSS v3
8.8
EPSS
0.0512
EPSS Percentile
91.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-22
Status
published
Products (4)
canonical/ubuntu_linux
18.04
canonical/ubuntu_linux
19.04
debian/debian_linux
8.0
linux/linux_kernel
2.6.12 - 3.16.81
Published
Nov 27, 2019
Tracked Since
Feb 18, 2026