Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aff baseboard management controller vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-6260
The ASPEED ast2400 and ast2500 Baseband Management Controller (BMC) hardware and firmware implement Advanced High-performance Bus (AHB) bridges, which allow arbitrary read and write access to the BMC's physical address space from the host (or from the network in unusual case...
Aspeedtech Ast2400 Firmware
Aspeedtech Ast2500 Firmware
Netapp Fas\\/aff Baseboard Management Controller
6.9
CVSSv2
CVE-2021-26708
A local privilege escalation exists in the Linux kernel prior to 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong locking in net/vmw_vsock/af_vsock.c. The race conditions were implicitly introduced in the commits that added VSOCK multi-transpor...
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Fas Baseboard Management Controller -
Netapp Aff Baseboard Management Controller -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire Baseboard Management Controller -
Netapp Baseboard Management Controller 500f Firmware
Netapp Baseboard Management Controller A250 Firmware
Netapp Hci H410c Firmware -
10 Github repositories
7.2
CVSSv2
CVE-2020-12659
An issue exists in the Linux kernel prior to 5.6.7. xdp_umem_reg in net/xdp/xdp_umem.c has an out-of-bounds write (by a user with the CAP_NET_ADMIN capability) because of a lack of headroom validation.
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Solidfire Baseboard Management Controller -
Netapp Hci Baseboard Management Controller H300s
Netapp Hci Baseboard Management Controller H500s
Netapp Hci Baseboard Management Controller H700s
Netapp Hci Baseboard Management Controller H410s
Netapp Hci Baseboard Management Controller H410c
Netapp Hci Baseboard Management Controller H610c
Netapp Hci Baseboard Management Controller H610s
Netapp Hci Baseboard Management Controller H615c
Netapp Aff Baseboard Management Controller A700s
2.1
CVSSv2
CVE-2019-19966
In the Linux kernel prior to 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655.
Linux Linux Kernel
Debian Debian Linux 8.0
Opensuse Leap 15.1
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Data Availability Services -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Solidfire Baseboard Management Controller -
Netapp Fas\\/aff Baseboard Management Controller -
Netapp E-series Santricity Os Controller
Netapp Hci Baseboard Management Controller H610s
Netapp Aff Baseboard Management Controller A700s
7.2
CVSSv2
CVE-2020-12465
An array overflow exists in mt76_add_fragment in drivers/net/wireless/mediatek/mt76/dma.c in the Linux kernel prior to 5.5.10, aka CID-b102f0c522cf. An oversized packet with too many rx fragments can corrupt memory of adjacent pages.
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Hci Compute Node -
Netapp Solidfire Baseboard Management Controller -
Netapp Hci Baseboard Management Controller H300s
Netapp Hci Baseboard Management Controller H500s
Netapp Hci Baseboard Management Controller H700s
Netapp Hci Baseboard Management Controller H410s
Netapp Hci Baseboard Management Controller H410c
Netapp Hci Baseboard Management Controller H610c
Netapp Hci Baseboard Management Controller H610s
Netapp Hci Baseboard Management Controller H615c
Netapp Aff Baseboard Management Controller A700s
7.2
CVSSv2
CVE-2020-12464
usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel prior to 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925.
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Hci Storage Nodes -
Netapp Aff A700s -
Netapp Active Iq Unified Manager -
Netapp Hci Compute Node -
Netapp Solidfire \\& Hci Storage Node -
Netapp Solidfire Baseboard Management Controller -
Netapp Hci Baseboard Management Controller H300s
Netapp Hci Baseboard Management Controller H500s
Netapp Hci Baseboard Management Controller H700s
Netapp Hci Baseboard Management Controller H410s
Netapp Hci Baseboard Management Controller H410c
Netapp Hci Baseboard Management Controller H610c
Netapp Hci Baseboard Management Controller H610s
Netapp Hci Baseboard Management Controller H615c
1 Article
2.1
CVSSv2
CVE-2019-19922
kernel/sched/fair.c in the Linux kernel prior to 5.3.9, when cpu.cfs_quota_us is used (e.g., with Kubernetes), allows malicious users to cause a denial of service against non-cpu-bound applications by generating a workload that triggers unwanted slice expiration, aka CID-de53fd7a...
Linux Linux Kernel
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Oracle Sd-wan Edge 8.2
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Data Availability Services -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Solidfire Baseboard Management Controller -
Netapp Fas\\/aff Baseboard Management Controller -
Netapp E-series Santricity Os Controller
Netapp Hci Baseboard Management Controller H610s
Netapp Aff Baseboard Management Controller A700
7.2
CVSSv2
CVE-2021-28972
In drivers/pci/hotplug/rpadlpar_sysfs.c in the Linux kernel up to and including 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a new device name to the driver from userspace, allowing userspace to write data to the kernel stack frame directly...
Linux Linux Kernel
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Netapp Cloud Backup -
Netapp Solidfire Baseboard Management Controller Firmware -
Netapp Fas\\/aff Baseboard Management Controller -
2.1
CVSSv2
CVE-2019-19947
In the Linux kernel up to and including 5.4.6, there are information leaks of uninitialized memory to a USB device in the drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c driver, aka CID-da2311a6385c.
Linux Linux Kernel
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 16.04
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Data Availability Services -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Solidfire Baseboard Management Controller -
Netapp Fas\\/aff Baseboard Management Controller -
Netapp E-series Santricity Os Controller
Netapp Hci Baseboard Management Controller H610s
Netapp Aff Baseboard Management Controller A700s
4.9
CVSSv2
CVE-2019-20054
In the Linux kernel prior to 5.0.6, there is a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e.
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Data Availability Services -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Solidfire Baseboard Management Controller -
Netapp Fas\\/aff Baseboard Management Controller -
Netapp E-series Santricity Os Controller
Netapp H610s Firmware -
Netapp 8300 Firmware -
Netapp 8700 Firmware -
Netapp A400 Firmware -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400
CVE-2023-7252
CVE-2024-21111
denial of service
CVE-2024-29661
CVE-2024-22856
remote attackers
encryption
CVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »