Netapp

H300e Firmware

148 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-23308

  • EPSS 0.06%
  • Published 26.02.2022 05:15:08
  • Last modified 05.05.2025 17:17:56

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.

5.9

CVE-2020-36516

  • EPSS 0.04%
  • Published 26.02.2022 04:15:06
  • Last modified 21.11.2024 05:29:43

An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session.

7.8

CVE-2022-0646

  • EPSS 0.14%
  • Published 18.02.2022 18:15:11
  • Last modified 21.11.2024 06:39:06

A flaw use after free in the Linux kernel Management Component Transport Protocol (MCTP) subsystem was found in the way user triggers cancel_work_sync after the unregister_netdev during removing device. A local user could use this flaw to crash the s...

7.1

CVE-2021-4090

  • EPSS 0.06%
  • Published 18.02.2022 18:15:10
  • Last modified 21.11.2024 06:36:52

An out-of-bounds (OOB) memory write flaw was found in the NFSD in the Linux kernel. Missing sanity may lead to a write beyond bmval[bmlen-1] in nfsd4_decode_bitmap4 in fs/nfsd/nfs4xdr.c. In this flaw, a local attacker with user privilege may gain acc...

7.4

CVE-2021-20322

  • EPSS 0.12%
  • Published 18.02.2022 18:15:09
  • Last modified 21.11.2024 05:46:22

A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass ...

7.8

CVE-2022-25265

Exploit
  • EPSS 0.27%
  • Published 16.02.2022 21:15:08
  • Last modified 21.11.2024 06:51:54

In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable ...

7.9

CVE-2021-3752

Exploit
  • EPSS 0.03%
  • Published 16.02.2022 19:15:08
  • Last modified 21.11.2024 06:22:20

A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The...

7.8

CVE-2021-3760

  • EPSS 0.15%
  • Published 16.02.2022 19:15:08
  • Last modified 21.11.2024 06:22:21

A flaw was found in the Linux kernel. A use-after-free vulnerability in the NFC stack can lead to a threat to confidentiality, integrity, and system availability.

8.4

CVE-2022-0185

Warning Exploit
  • EPSS 1.04%
  • Published 11.02.2022 18:15:10
  • Last modified 03.04.2025 16:08:21

A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabl...

7.8

CVE-2022-24958

  • EPSS 0.05%
  • Published 11.02.2022 06:15:06
  • Last modified 21.11.2024 06:51:27

drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.