Netapp

Active Iq Unified Manager

841 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-43680

Exploit
  • EPSS 0.31%
  • Published 24.10.2022 14:15:53
  • Last modified 30.05.2025 20:15:31

In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.

7

CVE-2022-3649

  • EPSS 0.09%
  • Published 21.10.2022 20:15:09
  • Last modified 21.11.2024 07:19:57

A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_new_inode of the file fs/nilfs2/inode.c of the component BPF. The manipulation leads to use after free. It is possible to launch the atta...

6.5

CVE-2022-3598

Exploit
  • EPSS 0.04%
  • Published 21.10.2022 16:15:11
  • Last modified 07.05.2025 21:15:56

LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with co...

6.5

CVE-2022-3599

Exploit
  • EPSS 0.05%
  • Published 21.10.2022 16:15:11
  • Last modified 07.05.2025 21:15:56

LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit e8131125.

6.5

CVE-2022-3626

Exploit
  • EPSS 0.05%
  • Published 21.10.2022 16:15:11
  • Last modified 07.05.2025 16:15:20

LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff f...

6.5

CVE-2022-3627

Exploit
  • EPSS 0.02%
  • Published 21.10.2022 16:15:11
  • Last modified 07.05.2025 15:15:54

LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6860, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff fro...

6.5

CVE-2022-3597

Exploit
  • EPSS 0.02%
  • Published 21.10.2022 16:15:10
  • Last modified 07.05.2025 21:15:56

LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection, tools/tiffcrop.c:6826, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff fro...

7.5

CVE-2022-38177

  • EPSS 1.14%
  • Published 21.09.2022 11:15:09
  • Last modified 28.05.2025 16:15:26

By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources.

7.5

CVE-2022-38178

  • EPSS 1.39%
  • Published 21.09.2022 11:15:09
  • Last modified 28.05.2025 16:15:26

By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory leak. It is possible to gradually erode available memory to the point where named crashes for lack of resources.

9.8

CVE-2022-2526

  • EPSS 0.25%
  • Published 09.09.2022 15:15:10
  • Last modified 21.11.2024 07:01:11

A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete() function in 'resolved-dns-stream.c' not incrementing the reference counting for the DnsStream object. Therefore, other...