Netapp

Hci Baseboard Management Controller

32 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.3

CVE-2025-0725

Exploit
  • EPSS 0.42%
  • Veröffentlicht 05.02.2025 10:15:22
  • Zuletzt bearbeitet 27.06.2025 19:24:08

When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, **using zlib 1.2.0.3 or older**, an attacker-controlled integer overflow would make libcurl perform a buffer ov...

7.1

CVE-2023-3141

  • EPSS 0.01%
  • Veröffentlicht 09.06.2023 20:15:10
  • Zuletzt bearbeitet 11.03.2025 15:15:38

A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.

7.8

CVE-2023-2598

  • EPSS 0.64%
  • Veröffentlicht 01.06.2023 01:15:17
  • Zuletzt bearbeitet 23.04.2025 17:16:29

A flaw was found in the fixed buffer registration code for io_uring (io_sqe_buffer_register in io_uring/rsrc.c) in the Linux kernel that allows out-of-bounds access to physical memory beyond the end of the buffer. This flaw enables full local privile...

7.8

CVE-2023-32233

  • EPSS 0.49%
  • Veröffentlicht 08.05.2023 20:15:20
  • Zuletzt bearbeitet 05.05.2025 16:15:39

In the Linux kernel through 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs ...

7.8

CVE-2023-2236

Exploit
  • EPSS 0.03%
  • Veröffentlicht 01.05.2023 13:15:44
  • Zuletzt bearbeitet 13.02.2025 17:16:20

A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Both io_install_fixed_file and its callers call fput in a file in case of an error, causing a reference underflow which lea...

7

CVE-2023-2006

  • EPSS 0.02%
  • Veröffentlicht 24.04.2023 21:15:09
  • Zuletzt bearbeitet 23.04.2025 17:16:28

A race condition was found in the Linux kernel's RxRPC network protocol, within the processing of RxRPC bundles. This issue results from the lack of proper locking when performing operations on an object. This may allow an attacker to escalate privil...

7.1

CVE-2023-26607

Exploit
  • EPSS 0.06%
  • Veröffentlicht 26.02.2023 23:15:10
  • Zuletzt bearbeitet 05.05.2025 16:15:31

In the Linux kernel 6.0.8, there is an out-of-bounds read in ntfs_attr_find in fs/ntfs/attrib.c.

7.1

CVE-2022-41858

  • EPSS 0.01%
  • Veröffentlicht 17.01.2023 18:15:11
  • Zuletzt bearbeitet 07.04.2025 17:15:33

A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel inform...

7.8

CVE-2023-23559

  • EPSS 0.02%
  • Veröffentlicht 13.01.2023 01:15:10
  • Zuletzt bearbeitet 05.05.2025 16:15:30

In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.

7

CVE-2022-41222

Exploit
  • EPSS 0.01%
  • Veröffentlicht 21.09.2022 08:15:09
  • Zuletzt bearbeitet 28.05.2025 16:15:28

mm/mremap.c in the Linux kernel before 5.13.3 has a use-after-free via a stale TLB because an rmap lock is not held during a PUD move.