Netapp

Storagegrid

73 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.49%
  • Veröffentlicht 16.02.2024 23:15:07
  • Zuletzt bearbeitet 13.12.2024 17:55:06

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8 are susceptible to a Denial of Service (DoS) vulnerability. Successful exploit by an authenticated attacker could lead to an out of memory condition or node reboot.

  • EPSS 0.7%
  • Veröffentlicht 05.02.2024 21:15:10
  • Zuletzt bearbeitet 21.11.2024 07:52:38

StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.13 are susceptible to a Denial of Service (DoS) vulnerability. A successful exploit could lead to a crash of the Local Distribution Router (LDR) service.

  • EPSS 0.62%
  • Veröffentlicht 02.03.2023 18:15:09
  • Zuletzt bearbeitet 07.03.2025 18:15:35

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.6.0.8 are susceptible to a Denial of Service (DoS) vulnerability. A successful exploit could lead to to a crash of the Local Distribution Router (LDR) service.

  • EPSS 0.61%
  • Veröffentlicht 10.08.2022 20:15:30
  • Zuletzt bearbeitet 21.11.2024 06:48:14

Linux deployments of StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.2 deployed with a Linux kernel version less than 4.7.0 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to view limi...

Exploit
  • EPSS 15.93%
  • Veröffentlicht 05.08.2022 07:15:07
  • Zuletzt bearbeitet 30.05.2025 20:15:30

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib s...

  • EPSS 2.91%
  • Veröffentlicht 25.05.2022 15:15:07
  • Zuletzt bearbeitet 21.11.2024 06:41:14

An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memory/netns leak, which can be used by remote clients.

Warnung
  • EPSS 70.56%
  • Veröffentlicht 15.03.2022 17:15:08
  • Zuletzt bearbeitet 14.04.2026 10:16:21

The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed ...

  • EPSS 0.92%
  • Veröffentlicht 04.03.2022 18:15:08
  • Zuletzt bearbeitet 21.11.2024 06:48:14

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.6.0 are susceptible to a vulnerability which when successfully exploited could lead to Denial of Service (DoS) of the Local Distribution Router (LDR) service.

  • EPSS 0.75%
  • Veröffentlicht 04.03.2022 18:15:08
  • Zuletzt bearbeitet 21.11.2024 06:48:14

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.6.0 are susceptible to a vulnerability which when successfully exploited could allow disabled, expired, or locked external user accounts to access S3 data to which they previously had a...

  • EPSS 3.02%
  • Veröffentlicht 11.02.2022 01:15:07
  • Zuletzt bearbeitet 21.11.2024 06:49:17

Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.