Netapp

H410c Firmware

231 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-2911

  • EPSS 0.29%
  • Veröffentlicht 21.06.2023 17:15:47
  • Zuletzt bearbeitet 21.11.2024 07:59:33

If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer-enable yes;` and `stale-answer-client-timeout 0;`, a sequence of serve-stale-related lookups could cause `named` to loop and terminate unexpectedly du...

7.8

CVE-2023-35788

Exploit
  • EPSS 0.01%
  • Veröffentlicht 16.06.2023 21:15:09
  • Zuletzt bearbeitet 05.05.2025 16:15:41

An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets. This may result in denial of service o...

7.8

CVE-2023-3111

  • EPSS 0.02%
  • Veröffentlicht 05.06.2023 21:15:11
  • Zuletzt bearbeitet 23.04.2025 17:16:34

A use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by calling btrfs_ioctl_balance() before calling btrfs_ioctl_defrag().

7.5

CVE-2023-2953

  • EPSS 1.11%
  • Veröffentlicht 30.05.2023 22:15:10
  • Zuletzt bearbeitet 10.01.2025 22:15:23

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

4.7

CVE-2023-2898

  • EPSS 0.02%
  • Veröffentlicht 26.05.2023 22:15:14
  • Zuletzt bearbeitet 21.11.2024 07:59:31

There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user to cause a denial of service problem.

7.8

CVE-2023-2124

Exploit
  • EPSS 0.02%
  • Veröffentlicht 15.05.2023 22:15:12
  • Zuletzt bearbeitet 21.11.2024 07:57:58

An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the s...

7.5

CVE-2023-0045

Exploit
  • EPSS 0.25%
  • Veröffentlicht 25.04.2023 23:15:09
  • Zuletzt bearbeitet 13.02.2025 17:15:52

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ib_prctl_set  function updates the Thread Information Flags (TIFs) for the task and updates the SPEC_CTRL MSR on the function __speculation_ctr...

4.4

CVE-2023-2269

  • EPSS 0.03%
  • Veröffentlicht 25.04.2023 21:15:10
  • Zuletzt bearbeitet 21.11.2024 07:58:16

A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in drivers/md/dm-ioctl.c in the Linux Kernel Device Mapper-Multipathing sub-component.

7.8

CVE-2023-2007

  • EPSS 0.03%
  • Veröffentlicht 24.04.2023 23:15:18
  • Zuletzt bearbeitet 21.11.2024 07:57:45

The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this in conjunction with other vulnerabilities to escalate privileges a...

5.5

CVE-2023-31084

  • EPSS 0.01%
  • Veröffentlicht 24.04.2023 06:15:07
  • Zuletzt bearbeitet 18.03.2025 20:15:19

An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interruptible is called; the condition is dvb_frontend_test...