oracle zfs storage appliance kit 8.8 vulnerabilities and exploits

(subscribe to this query)

8.2

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Core). The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance...

Oracle Zfs Storage Appliance Kit 8.8

3.4

Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Core). The supported version that is affected is 8.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle ZFS Storage Appliance...

Oracle Zfs Storage Appliance Kit 8.8

6.5

CVSSv3

In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitation requires a victim to open a crafted, multi-gigabyte XML file. Other...

8.1

CVSSv3

Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to version 22.4.0rc1, the Twisted Web HTTP 1.1 server, located in the `twisted.web.http` module, parsed several HTTP request constructs more leniently than permitted by RFC 7230. This...

Twistedmatrix Twisted Debian Debian Linux 9.0 Fedoraproject Fedora 35 Fedoraproject Fedora 36 Oracle Zfs Storage Appliance Kit 8.81 Github repository available

9.8

CVSSv3

Out-of-bounds Write vulnerability in mod_sed of Apache HTTP Server allows an attacker to overwrite heap memory with possibly attacker provided data. This issue affects Apache HTTP Server 2.4 version 2.4.52 and prior versions....

Apache Http Server Fedoraproject Fedora 34 Fedoraproject Fedora 35 Fedoraproject Fedora 36 Debian Debian Linux 9.0 Oracle Http Server 12.2.1.3.0 Oracle Http Server 12.2.1.4.0 Oracle Zfs Storage Appliance Kit 8.82 Github repositories available1 Article available

9.8

CVSSv3

Apache HTTP Server 2.4.52 and earlier fails to close inbound connection when errors are encountered discarding the request body, exposing the server to HTTP Request Smuggling...

Apache Http Server Fedoraproject Fedora 34 Fedoraproject Fedora 35 Fedoraproject Fedora 36 Debian Debian Linux 9.0 Oracle Http Server 12.2.1.3.0 Oracle Http Server 12.2.1.4.0 Oracle Enterprise Manager Ops Center 12.4.0.0 Oracle Zfs Storage Appliance Kit 8.8 Apple Macos Apple Mac Os X 10.15.71 Github repository available

9.1

CVSSv3

If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) on 32 bit systems an integer overflow happens which later causes out of bounds writes. This issue affects Apache HTTP Server 2.4.52 and earlier....

Apache Http Server Fedoraproject Fedora 34 Fedoraproject Fedora 35 Fedoraproject Fedora 36 Debian Debian Linux 9.0 Oracle Http Server 12.2.1.3.0 Oracle Http Server 12.2.1.4.0 Oracle Enterprise Manager Ops Center 12.4.0.0 Oracle Zfs Storage Appliance Kit 8.8 Apple Mac Os X Apple Mac Os X 10.15.7 Apple Macos1 Github repository available1 Article available

7.5

CVSSv3

A carefully crafted request body can cause a read to a random memory area which could cause the process to crash. This issue affects Apache HTTP Server 2.4.52 and earlier....

Apache Http Server Debian Debian Linux 9.0 Fedoraproject Fedora 34 Fedoraproject Fedora 35 Fedoraproject Fedora 36 Oracle Http Server 12.2.1.3.0 Oracle Http Server 12.2.1.4.0 Oracle Zfs Storage Appliance Kit 8.8 Apple Macos Apple Mac Os X 10.15.71 Github repository available

7.5

CVSSv3

Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 22.2.0, Twisted SSH client and server implement is able to accept an infinite amount of data for the peer's SSH version identifier. This ends up with a buffer using all the...

Twistedmatrix Twisted Debian Debian Linux 9.0 Oracle Http Server 12.2.1.3.0 Oracle Http Server 12.2.1.4.0 Oracle Zfs Storage Appliance Kit 8.8 Fedoraproject Fedora 35 Fedoraproject Fedora 362 Github repositories available

7.5

CVSSv3

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes....

Xmlsoft Libxml2 Fedoraproject Fedora 34 Debian Debian Linux 9.0 Apple Mac Os X 10.15.7 Apple Iphone Os Apple Watchos Apple Tvos Apple Ipados Apple Macos Apple Mac Os X Netapp Snapdrive -Netapp Snapmanager -Netapp Ontap Select Deploy Administration Utility -Netapp Clustered Data Ontap -Netapp Smi-s Provider -Netapp Clustered Data Ontap Antivirus Connector -Netapp Solidfire \\& Hci Management Node -Netapp Active Iq Unified Manager -Netapp Manageability Software Development Kit -Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -Netapp Bootstrap Os -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -Netapp H300e Firmware -Netapp H500e Firmware -Netapp H700e Firmware -Netapp H410s Firmware -Netapp H410c Firmware -Oracle Zfs Storage Appliance Kit 8.8 Oracle Communications Cloud Native Core Network Function Cloud Native Environment 22.1.0 Oracle Communications Cloud Native Core Network Repository Function 22.2.0 Oracle Communications Cloud Native Core Network Repository Function 22.1.2 Oracle Communications Cloud Native Core Unified Data Repository 22.2.0 Oracle Communications Cloud Native Core Binding Support Function 22.2.0 Oracle Communications Cloud Native Core Network Slice Selection Function 22.1.1 Oracle Mysql Workbench1 Github repository available

Get Started

1 2 3 4 5 6 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook