Netapp

H500e Firmware

148 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-23308

  • EPSS 0.06%
  • Veröffentlicht 26.02.2022 05:15:08
  • Zuletzt bearbeitet 05.05.2025 17:17:56

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.

5.9

CVE-2020-36516

  • EPSS 0.04%
  • Veröffentlicht 26.02.2022 04:15:06
  • Zuletzt bearbeitet 21.11.2024 05:29:43

An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session.

7.8

CVE-2022-0646

  • EPSS 0.14%
  • Veröffentlicht 18.02.2022 18:15:11
  • Zuletzt bearbeitet 21.11.2024 06:39:06

A flaw use after free in the Linux kernel Management Component Transport Protocol (MCTP) subsystem was found in the way user triggers cancel_work_sync after the unregister_netdev during removing device. A local user could use this flaw to crash the s...

7.1

CVE-2021-4090

  • EPSS 0.06%
  • Veröffentlicht 18.02.2022 18:15:10
  • Zuletzt bearbeitet 21.11.2024 06:36:52

An out-of-bounds (OOB) memory write flaw was found in the NFSD in the Linux kernel. Missing sanity may lead to a write beyond bmval[bmlen-1] in nfsd4_decode_bitmap4 in fs/nfsd/nfs4xdr.c. In this flaw, a local attacker with user privilege may gain acc...

7.4

CVE-2021-20322

  • EPSS 0.12%
  • Veröffentlicht 18.02.2022 18:15:09
  • Zuletzt bearbeitet 21.11.2024 05:46:22

A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was found to allow the ability to quickly scan open UDP ports. This flaw allows an off-path remote user to effectively bypass ...

7.8

CVE-2022-25265

Exploit
  • EPSS 0.27%
  • Veröffentlicht 16.02.2022 21:15:08
  • Zuletzt bearbeitet 21.11.2024 06:51:54

In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g., with GCC 3.2.2 and Linux kernel 2.4.20). This can cause execution of bytes located in supposedly non-executable ...

7.9

CVE-2021-3752

Exploit
  • EPSS 0.03%
  • Veröffentlicht 16.02.2022 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:22:20

A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and disconnect simultaneously due to a race condition. This flaw allows a user to crash the system or escalate their privileges. The...

7.8

CVE-2021-3760

  • EPSS 0.15%
  • Veröffentlicht 16.02.2022 19:15:08
  • Zuletzt bearbeitet 21.11.2024 06:22:21

A flaw was found in the Linux kernel. A use-after-free vulnerability in the NFC stack can lead to a threat to confidentiality, integrity, and system availability.

8.4

CVE-2022-0185

Warnung Exploit
  • EPSS 1.04%
  • Veröffentlicht 11.02.2022 18:15:10
  • Zuletzt bearbeitet 03.04.2025 16:08:21

A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabl...

7.8

CVE-2022-24958

  • EPSS 0.05%
  • Veröffentlicht 11.02.2022 06:15:06
  • Zuletzt bearbeitet 21.11.2024 06:51:27

drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.