Netapp

H700s Firmware

285 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.4

CVE-2022-0185

Warnung Exploit
  • EPSS 1.04%
  • Veröffentlicht 11.02.2022 18:15:10
  • Zuletzt bearbeitet 03.04.2025 16:08:21

A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabl...

7.8

CVE-2022-24958

  • EPSS 0.05%
  • Veröffentlicht 11.02.2022 06:15:06
  • Zuletzt bearbeitet 21.11.2024 06:51:27

drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev->buf release.

7.8

CVE-2022-24122

Exploit
  • EPSS 0.19%
  • Veröffentlicht 29.01.2022 22:15:07
  • Zuletzt bearbeitet 21.11.2024 06:49:51

kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are enabled, allows a use-after-free and privilege escalation because a ucounts object can outlive its namespace.

7.2

CVE-2021-22600

Warnung
  • EPSS 0.07%
  • Veröffentlicht 26.01.2022 14:15:08
  • Zuletzt bearbeitet 24.02.2025 15:41:32

A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. We recommend upgrading kernel past the effected versions or rebuilding past ec6af094ea2...

7.8

CVE-2021-34866

  • EPSS 0.13%
  • Veröffentlicht 25.01.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 06:11:22

This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel 5.14-rc3. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability....

7

CVE-2021-4083

  • EPSS 0.01%
  • Veröffentlicht 18.01.2022 17:15:09
  • Zuletzt bearbeitet 21.11.2024 06:36:52

A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close() and fget() simultaneously and can potentially trigger a race condition. This flaw allows a local user ...

7.8

CVE-2022-23222

Exploit
  • EPSS 0.56%
  • Veröffentlicht 14.01.2022 08:15:07
  • Zuletzt bearbeitet 21.11.2024 06:48:13

kernel/bpf/verifier.c in the Linux kernel through 5.15.14 allows local users to gain privileges because of the availability of pointer arithmetic via certain *_OR_NULL pointer types.

7.5

CVE-2021-45485

  • EPSS 0.52%
  • Veröffentlicht 25.12.2021 02:15:06
  • Zuletzt bearbeitet 21.11.2024 06:32:18

In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among ma...

7.8

CVE-2021-45469

Exploit
  • EPSS 0.07%
  • Veröffentlicht 23.12.2021 19:15:12
  • Zuletzt bearbeitet 21.11.2024 06:32:16

In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11, there is an out-of-bounds memory access when an inode has an invalid last xattr entry.

7

CVE-2021-44733

Exploit
  • EPSS 0.27%
  • Veröffentlicht 22.12.2021 17:15:09
  • Zuletzt bearbeitet 21.11.2024 06:31:28

A use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel through 5.15.11. This occurs because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object.