a700s firmware vulnerabilities and exploits

(subscribe to this query)

NetApp AFF A700s Baseboard Management Controller (BMC) firmware versions 1.22 and higher were shipped with a default account enabled that could allow unauthorized arbitrary command execution.

Netapp Aff A700s Baseboard Management Controller Netapp Aff A700s Firmware Netapp Clustered Data Ontap -

An issue exists in get_vdev_port_node_info in arch/sparc/kernel/mdesc.c in the Linux kernel up to and including 5.1.6. There is an unchecked kstrdup_const of node_info->vdev_port.name, which might allow an malicious user to cause a denial of service (NULL pointer dereference a...

Linux Linux Kernel Linux Linux Kernel 2.6.12 Linux Linux Kernel 5.2 Netapp Aff A700s Firmware -Netapp Active Iq Unified Manager Netapp Hci Management Node -Netapp Solidfire -Netapp Cn1610 Firmware -Netapp H610s Firmware -

In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a ...

* Linux Kernel Linux Linux Kernel Debian Debian Linux 10.0 Netapp A700s Firmware -Netapp 8300 Firmware -Netapp 8700 Firmware -Netapp A400 Firmware -Netapp C400 Firmware -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -Netapp H410s Firmware -

A locking inconsistency issue exists in the tty subsystem of the Linux kernel up to and including 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.

Linux Linux Kernel Fedoraproject Fedora 32 Fedoraproject Fedora 33 Debian Debian Linux 9.0 Debian Debian Linux 10.0 Netapp Active Iq Unified Manager -Broadcom Fabric Operating System -Netapp Solidfire Baseboard Management Controller Firmware -Netapp H410c Firmware -Netapp A700s Firmware -Netapp 8300 Firmware -Netapp 8700 Firmware -

A locking issue exists in the tty subsystem of the Linux kernel up to and including 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.

Linux Linux Kernel Fedoraproject Fedora 32 Fedoraproject Fedora 33 Debian Debian Linux 9.0 Debian Debian Linux 10.0 Netapp Active Iq Unified Manager -Broadcom Fabric Operating System -Netapp Solidfire Baseboard Management Controller Firmware -Netapp H410c Firmware -Netapp A700s Firmware -Netapp 8300 Firmware -Netapp 8700 Firmware -

1 Github repository

mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel prior to 5.1.6 has some error-handling cases that did not free allocated hostcmd memory, aka CID-003b686ace82. This will cause a memory leak and denial of service.

Linux Linux Kernel Opensuse Leap 15.1 Netapp Active Iq Unified Manager -Netapp Cloud Backup -Netapp Data Availability Services -Netapp E-series Santricity Os Controller Netapp Hci Management Node -Netapp Solidfire -Netapp Steelstore Cloud Integrated Storage -Netapp A700s Firmware -Netapp 8300 Firmware -Netapp 8700 Firmware -

The flow_dissector feature in the Linux kernel 4.3 up to and including 5.x prior to 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. This occurs because the auto flowlabel of a UDP IPv6 packet relies on a 32-bit hashrnd value as a secret, and because jhash (inste...

Linux Linux Kernel Debian Debian Linux 8.0 Netapp A700s Firmware -Netapp 8300 Firmware -Netapp 8700 Firmware -Netapp A400 Firmware -Netapp H610s Firmware -Netapp Active Iq Unified Manager -Netapp Cloud Backup -Netapp Data Availability Services -Netapp E-series Santricity Os Controller Netapp Hci Management Node -

scp in OpenSSH up to and including 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfe...

Openbsd Openssh Openbsd Openssh 8.3 Netapp A700s Firmware -Netapp Active Iq Unified Manager Netapp Hci Management Node -Netapp Solidfire -Netapp Steelstore Cloud Integrated Storage -Netapp Hci Compute Node -Netapp Hci Storage Node -Broadcom Fabric Operating System -

8 Github repositories

A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers. A local attacker is able to abuse this flaw to bypass checks to send any signal to a pri...

* Kernel Linux Linux Kernel Linux Linux Kernel 5.12 Redhat Enterprise Linux 8.0 Netapp A700s Firmware -Netapp Brocade Fabric Operating System Firmware -Netapp Fas8300 Firmware -Netapp Fas8700 Firmware -Netapp Aff A400 Firmware -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -

In the Linux kernel prior to 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a port, which may cause denial of service, aka CID-6caabe7f197d.

Linux Linux Kernel Linux Linux Kernel 5.1 Opensuse Leap 15.0 Opensuse Leap 15.1 Netapp Aff A700s Firmware -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -Netapp H300e Firmware -Netapp H500e Firmware -Netapp H700e Firmware -Netapp H410s Firmware -

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook