Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
broadcom network operations vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-13657
CA Performance Management 3.5.x, 3.6.x prior to 3.6.9, and 3.7.x prior to 3.7.4 have a default credential vulnerability that can allow a remote malicious user to execute arbitrary commands and compromise system security.
Broadcom Ca Performance Management 3.5.0
Broadcom Ca Performance Management
Broadcom Network Operations
9.8
CVSSv3
CVE-2022-23219
The deprecated compatibility function clnt_create in the sunrpc module of the GNU C Library (aka glibc) up to and including 2.34 copies its hostname argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of se...
Gnu Glibc
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.1.0
Oracle Communications Cloud Native Core Binding Support Function 22.1.3
Oracle Communications Cloud Native Core Network Repository Function 22.2.0
Oracle Communications Cloud Native Core Security Edge Protection Proxy 22.1.1
Oracle Communications Cloud Native Core Network Repository Function 22.1.2
Oracle Enterprise Operations Monitor 4.3
Oracle Enterprise Operations Monitor 4.4
Oracle Enterprise Operations Monitor 5.0
Oracle Communications Cloud Native Core Unified Data Repository 22.2.0
Debian Debian Linux 10.0
1 Github repository
5.9
CVSSv3
CVE-2017-15533
Symantec SSL Visibility (SSLV) 3.8.4FC, 3.10 before 3.10.4.1, 3.11, and 3.12 before 3.12.2.1 are vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. All affected SSLV versions act as weak oracles according the oracle classification used in the ROBOT resea...
Broadcom Ssl Visibility Appliance 3.10
Broadcom Ssl Visibility Appliance 3.12
Broadcom Ssl Visibility Appliance 3.8.4fc
Broadcom Ssl Visibility Appliance 3.11
7
CVSSv3
CVE-2021-23133
A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) prior to 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)->sctp.addr_wq_lock then an element ...
Linux Linux Kernel
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Netapp Cloud Backup -
Netapp Solidfire \\& Hci Management Node -
Broadcom Brocade Fabric Operating System -
Netapp H410c Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
Netapp Solidfire Baseboard Management Controller Firmware -
7.1
CVSSv3
CVE-2020-8648
There is a use-after-free vulnerability in the Linux kernel up to and including 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.
Linux Linux Kernel
Debian Debian Linux 8.0
Opensuse Leap 15.1
Netapp Cloud Backup -
Netapp Active Iq Unified Manager -
Netapp Solidfire Baseboard Management Controller -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Hci Baseboard Management Controller H410c
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
7.8
CVSSv3
CVE-2023-32233
In the Linux kernel up to and including 6.3.1, a use-after-free in Netfilter nf_tables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous ...
Linux Linux Kernel
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
Netapp Hci Baseboard Management Controller H300s
Netapp Hci Baseboard Management Controller H500s
Netapp Hci Baseboard Management Controller H700s
Netapp Hci Baseboard Management Controller H410s
Netapp Hci Baseboard Management Controller H410c
3 Github repositories
7.5
CVSSv3
CVE-2022-43551
A vulnerability exists in curl <7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. However, the HSTS mecha...
Haxx Curl
Fedoraproject Fedora 37
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
7.1
CVSSv3
CVE-2023-1380
A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info->req_len data is bigger than the size of the buffer, defined as WL_EXTRA_BUF_MAX, leadin...
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
Linux Linux Kernel 6.3
Linux Linux Kernel
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Netapp H300s Firmware -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 22.04
7.5
CVSSv3
CVE-2022-0778
The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curv...
Openssl Openssl
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Santricity Smi-s Provider -
Netapp Storagegrid -
Netapp Clustered Data Ontap -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Cloud Volumes Ontap Mediator -
Netapp A250 Firmware -
Netapp 500f Firmware -
Fedoraproject Fedora 34
Fedoraproject Fedora 36
Tenable Nessus
Mariadb Mariadb
Nodejs Node.js
10 Github repositories
5.5
CVSSv3
CVE-2022-26373
Non-transparent sharing of return predictor targets between contexts in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
Intel Xeon Platinum 8253 Firmware -
Intel Xeon Platinum 8256 Firmware -
Intel Xeon Platinum 8260 Firmware -
Intel Xeon Platinum 8260l Firmware -
Intel Xeon Platinum 8260m Firmware -
Intel Xeon Platinum 8260y Firmware -
Intel Xeon Platinum 8268 Firmware -
Intel Xeon Platinum 8270 Firmware -
Intel Xeon Platinum 8276 Firmware -
Intel Xeon Platinum 8276l Firmware -
Intel Xeon Platinum 8276m Firmware -
Intel Xeon Platinum 8280 Firmware -
Intel Xeon Platinum 8280l Firmware -
Intel Xeon Platinum 8280m Firmware -
Intel Xeon Platinum 9220 Firmware -
Intel Xeon Platinum 9221 Firmware -
Intel Xeon Platinum 9222 Firmware -
Intel Xeon Platinum 9242 Firmware -
Intel Xeon Platinum 9282 Firmware -
Intel Xeon Gold 5215 Firmware -
Intel Xeon Gold 5215l Firmware -
Intel Xeon Gold 5215m Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »