Netapp

Hci Management Node

182 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.9

CVE-2022-32208

Exploit
  • EPSS 0.3%
  • Veröffentlicht 07.07.2022 13:15:08
  • Zuletzt bearbeitet 05.05.2025 17:18:13

When curl < 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. This flaw makes it possible for a Man-In-The-Middle attack to go unnoticed and even allows it to inject data to the client.

10

CVE-2022-2068

  • EPSS 25.23%
  • Veröffentlicht 21.06.2022 15:15:09
  • Zuletzt bearbeitet 15.09.2025 14:15:33

In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script does not properly sanitise shell metacharacters to prevent command injection were found by code review. When the CVE-2022...

7.5

CVE-2022-1678

  • EPSS 0.52%
  • Veröffentlicht 25.05.2022 15:15:07
  • Zuletzt bearbeitet 21.11.2024 06:41:14

An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memory/netns leak, which can be used by remote clients.

9.1

CVE-2022-1586

  • EPSS 0.36%
  • Veröffentlicht 16.05.2022 21:15:07
  • Zuletzt bearbeitet 25.03.2025 19:39:30

An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occu...

9.1

CVE-2022-1587

  • EPSS 0.15%
  • Veröffentlicht 16.05.2022 21:15:07
  • Zuletzt bearbeitet 21.11.2024 06:41:01

An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers.

7.8

CVE-2022-1619

Exploit
  • EPSS 0.71%
  • Veröffentlicht 08.05.2022 10:15:07
  • Zuletzt bearbeitet 21.11.2024 06:41:06

Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 8.2.4899. This vulnerabilities are capable of crashing software, modify memory, and possible remote execution

5.3

CVE-2022-21496

  • EPSS 0.11%
  • Veröffentlicht 19.04.2022 21:15:18
  • Zuletzt bearbeitet 21.11.2024 06:44:50

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5,...

5

CVE-2022-21476

  • EPSS 0.18%
  • Veröffentlicht 19.04.2022 21:15:17
  • Zuletzt bearbeitet 21.11.2024 06:44:47

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20...

4.3

CVE-2022-21443

  • EPSS 0.06%
  • Veröffentlicht 19.04.2022 21:15:15
  • Zuletzt bearbeitet 21.11.2024 06:44:42

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20...

6.8

CVE-2021-4203

Exploit
  • EPSS 0.07%
  • Veröffentlicht 25.03.2022 19:15:09
  • Zuletzt bearbeitet 21.11.2024 06:37:08

A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() (and connect()) in the Linux kernel. In this flaw, an attacker with a user privileges may crash the system or leak in...