Netapp

Active Iq Unified Manager

846 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-5178

  • EPSS 4.45%
  • Veröffentlicht 01.11.2023 17:15:11
  • Zuletzt bearbeitet 21.11.2024 08:41:14

A use-after-free vulnerability was found in drivers/nvme/target/tcp.c` in `nvmet_tcp_free_crypto` due to a logical bug in the NVMe/TCP subsystem in the Linux kernel. This issue may allow a malicious user to cause a use-after-free and double-free prob...

9.8

CVE-2023-38545

  • EPSS 26.25%
  • Veröffentlicht 18.10.2023 04:15:11
  • Zuletzt bearbeitet 13.02.2025 17:16:47

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length th...

5.5

CVE-2023-45862

  • EPSS 0.02%
  • Veröffentlicht 14.10.2023 21:15:45
  • Zuletzt bearbeitet 21.11.2024 08:27:30

An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel before 6.2.5. An object could potentially extend beyond the end of an allocation.

6.5

CVE-2023-40745

  • EPSS 0.26%
  • Veröffentlicht 05.10.2023 19:15:11
  • Zuletzt bearbeitet 21.11.2024 08:20:03

LibTIFF is vulnerable to an integer overflow. This flaw allows remote attackers to cause a denial of service (application crash) or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.

8.8

CVE-2023-41993

Warnung
  • EPSS 21.48%
  • Veröffentlicht 21.09.2023 19:15:11
  • Zuletzt bearbeitet 05.11.2025 19:17:52

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS bef...

5.9

CVE-2023-4813

  • EPSS 0.3%
  • Veröffentlicht 12.09.2023 22:15:08
  • Zuletzt bearbeitet 26.09.2025 12:15:34

A flaw has been identified in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database...

8.8

CVE-2023-4863

Warnung Exploit
  • EPSS 94.08%
  • Veröffentlicht 12.09.2023 15:15:24
  • Zuletzt bearbeitet 24.10.2025 14:07:28

Heap buffer overflow in libwebp in Google Chrome prior to 116.0.5845.187 and libwebp 1.3.2 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: Critical)

7.5

CVE-2023-41105

  • EPSS 0.19%
  • Veröffentlicht 23.08.2023 07:15:08
  • Zuletzt bearbeitet 21.11.2024 08:20:35

An issue was discovered in Python 3.11 through 3.11.4. If a path containing '\0' bytes is passed to os.path.normpath(), the path will be truncated unexpectedly at the first '\0' byte. There are plausible cases in which an application would have rejec...

5.9

CVE-2022-48566

Exploit
  • EPSS 0.06%
  • Veröffentlicht 22.08.2023 19:16:32
  • Zuletzt bearbeitet 21.11.2024 07:33:31

An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest.

6.5

CVE-2022-48564

Exploit
  • EPSS 0.11%
  • Veröffentlicht 22.08.2023 19:16:31
  • Zuletzt bearbeitet 21.11.2024 07:33:30

read_ints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format.