Netapp

Ontap Select Deploy Administration Utility

178 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.5

CVE-2024-2004

Exploit
  • EPSS 0.91%
  • Published 27.03.2024 08:15:41
  • Last modified 30.07.2025 19:42:14

When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remain in the allowed set due to an error in the logic for removing protocols. The below command would perform a request to c...

6.3

CVE-2024-2379

Exploit
  • EPSS 0.21%
  • Published 27.03.2024 08:15:41
  • Last modified 30.07.2025 19:42:09

libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to use an unknown/bad cipher or curve, the error path accidentally skips the verification and returns OK, thus ignoring any ...

8.6

CVE-2024-2398

Exploit
  • EPSS 1.96%
  • Published 27.03.2024 08:15:41
  • Last modified 30.07.2025 19:42:27

When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all...

5.5

CVE-2024-26641

  • EPSS 0.02%
  • Published 18.03.2024 11:15:11
  • Last modified 28.03.2025 16:17:08

In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() syzbot found __ip6_tnl_rcv() could access unitiliazed data [1]. Call pskb_inet_may_pull() to fix this, and initialize...

5.5

CVE-2024-26633

  • EPSS 0.02%
  • Published 18.03.2024 11:15:09
  • Last modified 04.04.2025 14:49:01

In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim() syzbot pointed out [1] that NEXTHDR_FRAGMENT handling is broken. Reading frag_off can only be done if we p...

5.3

CVE-2024-26458

Exploit
  • EPSS 0.21%
  • Published 29.02.2024 01:44:18
  • Last modified 23.05.2025 15:39:31

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.

7.5

CVE-2024-26461

Exploit
  • EPSS 0.08%
  • Published 29.02.2024 01:44:18
  • Last modified 23.05.2025 15:30:30

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.

5.5

CVE-2024-26462

Exploit
  • EPSS 0.02%
  • Published 29.02.2024 01:44:18
  • Last modified 25.03.2025 20:15:21

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/kdc/ndr.c.

7.8

CVE-2023-4911

Warning Exploit
  • EPSS 78.36%
  • Published 03.10.2023 18:15:10
  • Last modified 06.05.2025 21:02:34

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launch...

7.5

CVE-2023-20900

  • EPSS 0.84%
  • Published 31.08.2023 10:15:08
  • Last modified 21.11.2024 07:41:47

A malicious actor that has been granted Guest Operation Privileges https://docs.vmware.com/en/VMware-vSphere/8.0/vsphere-security/GUID-6A952214-0E5E-4CCF-9D2A-90948FF643EC.html  in a target virtual machine may be able to elevate their privileges if ...