Netapp

Ontap Select Deploy Administration Utility

178 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.5

CVE-2024-2004

Exploit
  • EPSS 0.91%
  • Veröffentlicht 27.03.2024 08:15:41
  • Zuletzt bearbeitet 30.07.2025 19:42:14

When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remain in the allowed set due to an error in the logic for removing protocols. The below command would perform a request to c...

6.3

CVE-2024-2379

Exploit
  • EPSS 0.21%
  • Veröffentlicht 27.03.2024 08:15:41
  • Zuletzt bearbeitet 30.07.2025 19:42:09

libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to use an unknown/bad cipher or curve, the error path accidentally skips the verification and returns OK, thus ignoring any ...

8.6

CVE-2024-2398

Exploit
  • EPSS 2.02%
  • Veröffentlicht 27.03.2024 08:15:41
  • Zuletzt bearbeitet 30.07.2025 19:42:27

When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all...

5.5

CVE-2024-26641

  • EPSS 0.02%
  • Veröffentlicht 18.03.2024 11:15:11
  • Zuletzt bearbeitet 28.03.2025 16:17:08

In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() syzbot found __ip6_tnl_rcv() could access unitiliazed data [1]. Call pskb_inet_may_pull() to fix this, and initialize...

5.5

CVE-2024-26633

  • EPSS 0.02%
  • Veröffentlicht 18.03.2024 11:15:09
  • Zuletzt bearbeitet 04.04.2025 14:49:01

In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() syzbot pointed out [1] that NEXTHDR_FRAGMENT handling is broken. Reading frag_off can only be done if we p...

5.3

CVE-2024-26458

Exploit
  • EPSS 0.21%
  • Veröffentlicht 29.02.2024 01:44:18
  • Zuletzt bearbeitet 23.05.2025 15:39:31

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.

7.5

CVE-2024-26461

Exploit
  • EPSS 0.06%
  • Veröffentlicht 29.02.2024 01:44:18
  • Zuletzt bearbeitet 23.05.2025 15:30:30

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.

5.5

CVE-2024-26462

Exploit
  • EPSS 0.02%
  • Veröffentlicht 29.02.2024 01:44:18
  • Zuletzt bearbeitet 25.03.2025 20:15:21

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.

7.8

CVE-2023-4911

Warnung Exploit
  • EPSS 69.79%
  • Veröffentlicht 03.10.2023 18:15:10
  • Zuletzt bearbeitet 06.11.2025 14:50:50

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launch...

7.5

CVE-2023-20900

  • EPSS 0.84%
  • Veröffentlicht 31.08.2023 10:15:08
  • Zuletzt bearbeitet 21.11.2024 07:41:47

A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html  in a target virtual machine may be able to elevate their privileges if ...