Netapp

H410c Firmware

236 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2022-40304

  • EPSS 0.11%
  • Veröffentlicht 23.11.2022 18:15:12
  • Zuletzt bearbeitet 28.04.2025 20:15:19

An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.

7.5

CVE-2022-40303

  • EPSS 0.18%
  • Veröffentlicht 23.11.2022 00:15:11
  • Zuletzt bearbeitet 29.04.2025 05:15:43

An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset,...

7.5

CVE-2022-43945

  • EPSS 0.71%
  • Veröffentlicht 04.11.2022 19:15:11
  • Zuletzt bearbeitet 01.05.2025 19:15:55

The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number of pages held by each NFSD thread by combining the receive and send buffers of a remote procedure call (RPC) into a sin...

7.5

CVE-2022-43680

Exploit
  • EPSS 0.36%
  • Veröffentlicht 24.10.2022 14:15:53
  • Zuletzt bearbeitet 30.05.2025 20:15:31

In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.

7.8

CVE-2022-3545

  • EPSS 0.03%
  • Veröffentlicht 17.10.2022 12:15:11
  • Zuletzt bearbeitet 21.11.2024 07:19:44

A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function area_cache_get of the file drivers/net/ethernet/netronome/nfp/nfpcore/nfp_cppcore.c of the component IPsec. The manipulation lea...

7.1

CVE-2022-3202

  • EPSS 0.02%
  • Veröffentlicht 14.09.2022 15:15:11
  • Zuletzt bearbeitet 21.11.2024 07:19:02

A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System (JFS)in the Linux kernel. This could allow a local attacker to crash the system or leak kernel internal information.

7.8

CVE-2022-2964

  • EPSS 0.05%
  • Veröffentlicht 09.09.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 07:01:59

A flaw was found in the Linux kernel’s driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerability contains multiple out-of-bounds reads and possible out-of-bounds writes.

5.3

CVE-2022-39046

Exploit
  • EPSS 0.57%
  • Veröffentlicht 31.08.2022 06:15:07
  • Zuletzt bearbeitet 21.11.2024 07:17:26

An issue was discovered in the GNU C Library (glibc) 2.36. When the syslog function is passed a crafted input string larger than 1024 bytes, it reads uninitialized memory from the heap and prints it to the target log file, potentially revealing a por...

7.5

CVE-2022-1199

  • EPSS 0.15%
  • Veröffentlicht 29.08.2022 15:15:10
  • Zuletzt bearbeitet 23.04.2025 18:15:47

A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability.

7

CVE-2022-2961

  • EPSS 0.02%
  • Veröffentlicht 29.08.2022 15:15:10
  • Zuletzt bearbeitet 21.11.2024 07:01:59

A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by calling bind while simultaneously triggering the rose_bind() function. This flaw allows a local user to crash or potentially e...