Netapp

Hci Bootstrap Os

24 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2022-27775

Exploit
  • EPSS 0.25%
  • Veröffentlicht 02.06.2022 14:15:43
  • Zuletzt bearbeitet 21.11.2024 06:56:09

An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using an IPv6 address that was in the connection pool but with a different zone id it could reuse a connection instead.

6.5

CVE-2022-27776

Exploit
  • EPSS 0.57%
  • Veröffentlicht 02.06.2022 14:15:43
  • Zuletzt bearbeitet 21.11.2024 06:56:09

A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.

5.7

CVE-2022-27774

Exploit
  • EPSS 0.51%
  • Veröffentlicht 02.06.2022 14:15:43
  • Zuletzt bearbeitet 21.11.2024 06:56:09

An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow an attacker to extract credentials when follows HTTP(S) redirects is used with authentication could leak credentials to ...

5.5

CVE-2021-38203

Exploit
  • EPSS 0.05%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:39

btrfs in the Linux kernel before 5.13.4 allows attackers to cause a denial of service (deadlock) via processes that trigger allocation of new system chunks during times when there is a shortage of free space in the system space_info.

7.5

CVE-2021-38202

  • EPSS 1.45%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:38

fs/nfsd/trace.h in the Linux kernel before 5.13.4 might allow remote attackers to cause a denial of service (out-of-bounds read in strlen) by sending NFS traffic when the trace event framework is being used for nfsd.

7.5

CVE-2021-38201

  • EPSS 0.52%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:38

net/sunrpc/xdr.c in the Linux kernel before 5.13.4 allows remote attackers to cause a denial of service (xdr_set_page_base slab-out-of-bounds access) by performing many NFS 4.2 READ_PLUS operations.

6.5

CVE-2021-38199

  • EPSS 0.22%
  • Veröffentlicht 08.08.2021 20:15:07
  • Zuletzt bearbeitet 21.11.2024 06:16:38

fs/nfs/nfs4client.c in the Linux kernel before 5.13.4 has incorrect connection-setup ordering, which allows operators of remote NFSv4 servers to cause a denial of service (hanging of mounts) by arranging for those servers to be unreachable during tru...

7.8

CVE-2021-38160

  • EPSS 0.07%
  • Veröffentlicht 07.08.2021 04:15:06
  • Zuletzt bearbeitet 05.05.2025 14:12:40

In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is...

7.5

CVE-2020-8286

Exploit
  • EPSS 0.28%
  • Veröffentlicht 14.12.2020 20:15:14
  • Zuletzt bearbeitet 21.11.2024 05:38:39

curl 7.41.0 through 7.73.0 is vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response.

7.5

CVE-2020-8285

Exploit
  • EPSS 0.59%
  • Veröffentlicht 14.12.2020 20:15:13
  • Zuletzt bearbeitet 21.11.2024 05:38:39

curl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recursion due to a stack overflow issue in FTP wildcard match parsing.