Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp hci vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-9072
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setup_group in elf.c.
Gnu Binutils 2.32
Netapp Solidfire -
Netapp Hci Management Node -
4.3
CVSSv2
CVE-2022-27776
A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HTTP redirects to the same host but another port number.
Haxx Curl
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Hci Bootstrap Os -
Netapp Clustered Data Ontap -
Netapp Solidfire & Hci Management Node -
Netapp Solidfire & Hci Storage Node -
Brocade Fabric Operating System -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
NA
CVE-2023-38431
An issue exists in the Linux kernel prior to 6.3.8. fs/smb/server/connection.c in ksmbd does not validate the relationship between the NetBIOS header's length field and the SMB header sizes, via pdu_size in ksmbd_conn_handler_loop, leading to an out-of-bounds read.
Linux Linux Kernel
Netapp Solidfire & Hci Management Node -
Netapp H300s -
Netapp H500s -
Netapp H700s -
Netapp H410s -
NA
CVE-2023-32257
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2_SESSION_SETUP and SMB2_LOGOFF commands. The issue results from the lack of proper locking when performing operations on an object. An...
Linux Linux Kernel
Netapp H300s -
Netapp H500s -
Netapp H700s -
Netapp H410s -
Netapp Solidfire & Hci Storage Node -
7.8
CVSSv2
CVE-2019-19069
A memory leak in the fastrpc_dma_buf_attach() function in drivers/misc/fastrpc.c in the Linux kernel prior to 5.3.9 allows malicious users to cause a denial of service (memory consumption) by triggering dma_get_sgtable() failures, aka CID-fc739a058d99.
Linux Linux Kernel 5.4
Linux Linux Kernel
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Netapp Steelstore Cloud Integrated Storage -
Netapp Data Availability Services -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Hci Storage Node -
Netapp Active Iq Unified Manager -
Netapp Hci Compute Node -
Netapp E-series Santricity Os Controller
Broadcom Fabric Operating System -
Netapp Aff A700s Firmware -
Netapp Fas8300 Firmware -
Netapp Fas8700 Firmware -
Netapp Aff A400 Firmware -
Netapp H610s Firmware -
NA
CVE-2023-38432
An issue exists in the Linux kernel prior to 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the relationship between the command payload size and the RFC1002 length specification, leading to an out-of-bounds read.
Linux Linux Kernel
Netapp Solidfire -
Netapp H300s -
Netapp H500s -
Netapp H700s -
Netapp H410s -
Netapp Solidfire & Hci Storage Node -
6.9
CVSSv2
CVE-2021-26708
A local privilege escalation exists in the Linux kernel prior to 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong locking in net/vmw_vsock/af_vsock.c. The race conditions were implicitly introduced in the commits that added VSOCK multi-transpor...
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Fas Baseboard Management Controller -
Netapp Aff Baseboard Management Controller -
Netapp Solidfire & Hci Management Node -
Netapp Solidfire Baseboard Management Controller -
Netapp Baseboard Management Controller 500f Firmware
Netapp Baseboard Management Controller A250 Firmware
Netapp Hci H410c Firmware -
10 Github repositories
5
CVSSv2
CVE-2022-0391
A flaw was found in Python, specifically within the urllib.parse module. This module helps break Uniform Resource Locator (URL) strings into components. The issue involves how the urlparse method does not sanitize input and allows characters like '\r' and '\n'...
Python Python 3.10.0
Python Python
Netapp Ontap Select Deploy Administration Utility -
Netapp Hci -
Netapp Hci Compute Node -
Netapp Management Services For Element Software -
Netapp Solidfire, Enterprise Sds & Hci Storage Node -
Netapp Active Iq Unified Manager -
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Http Server 12.2.1.3.0
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
7.5
CVSSv2
CVE-2019-18805
An issue exists in net/ipv4/sysctl_net_ipv4.c in the Linux kernel prior to 5.0.11. There is a net/ipv4/tcp_input.c signed integer overflow in tcp_ack_update_rtt() when userspace writes a very large integer to /proc/sys/net/ipv4/tcp_min_rtt_wlen, leading to a denial of service or ...
Linux Linux Kernel 5.1
Linux Linux Kernel
Opensuse Leap 15.0
Opensuse Leap 15.1
Redhat Enterprise Linux 7.0
Netapp Steelstore Cloud Integrated Storage -
Netapp Data Availability Services -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Hci Storage Node -
Netapp Active Iq Unified Manager -
Netapp Hci Compute Node -
Netapp E-series Santricity Os Controller
Broadcom Fabric Operating System -
Netapp Aff A700s Firmware -
Netapp Fas8300 Firmware -
Netapp Fas8700 Firmware -
Netapp Aff A400 Firmware -
Netapp H610s Firmware -
4.3
CVSSv2
CVE-2018-20839
systemd 242 changes the VT1 mode upon a logout, which allows malicious users to read cleartext passwords in certain circumstances, such as watching a shutdown, or using Ctrl-Alt-F1 and Ctrl-Alt-F2. This occurs because the KDGKBMODE (aka current keyboard mode) check is mishandled.
Systemd Project Systemd 242
Netapp Cn1610 Firmware -
Netapp Solidfire & Hci Management Node -
Netapp Snapprotect -
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »