Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
solidfire vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-25221
get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x prior to 5.8.7 allows privilege escalation because of incorrect reference counting (caused by gate page mishandling) of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be trig...
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Solidfire \\& Hci Management Node -
Netapp Hci Compute Node -
Netapp Solidfire Baseboard Management Controller -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
9.1
CVSSv3
CVE-2023-38432
An issue exists in the Linux kernel prior to 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the relationship between the command payload size and the RFC1002 length specification, leading to an out-of-bounds read.
Linux Linux Kernel
Netapp Solidfire -
Netapp H300s -
Netapp H500s -
Netapp H700s -
Netapp H410s -
Netapp Solidfire \\& Hci Storage Node -
7.5
CVSSv3
CVE-2022-36946
nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel up to and including 5.18.14 allows remote malicious users to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one-byte nfta_payload attribute, an skb_pull can encounter a negat...
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Hci Compute Node -
Netapp Solidfire \\& Hci Storage Node -
Netapp Solidfire Enterprise Sds -
2 Github repositories
9.1
CVSSv3
CVE-2023-38426
An issue exists in the Linux kernel prior to 6.3.4. ksmbd has an out-of-bounds read in smb2_find_context_vals when create_context's name_len is larger than the tag length.
Linux Linux Kernel
Netapp Solidfire \\& Hci Management Node -
Netapp H300s -
Netapp H500s -
Netapp H700s -
Netapp H410s -
Netapp Solidfire \\& Hci Storage Node -
9.1
CVSSv3
CVE-2023-38428
An issue exists in the Linux kernel prior to 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserName value because it does not consider the address of security buffer, leading to an out-of-bounds read.
Linux Linux Kernel
Netapp Solidfire \\& Hci Management Node -
Netapp H300s -
Netapp H500s -
Netapp H700s -
Netapp H410s -
Netapp Solidfire \\& Hci Storage Node -
7
CVSSv3
CVE-2020-29370
An issue exists in kmem_cache_alloc_bulk in mm/slub.c in the Linux kernel prior to 5.5.11. The slowpath lacks the required TID increment, aka CID-fd4d9c7d0c71.
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire\\, Enterprise Sds \\& Hci Storage Node -
Netapp Hci Compute Node Firmware -
Netapp H410c Firmware -
Netapp Solidfire Baseboard Management Controller Firmware -
8.8
CVSSv3
CVE-2020-29569
An issue exists in the Linux kernel up to and including 5.10.1, as used with Xen up to and including 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the fr...
Xen Xen
Linux Linux Kernel
Netapp Hci Compute Node Bios -
Netapp Solidfire \\& Hci Management Node -
Netapp Solidfire \\& Hci Storage Node -
Debian Debian Linux 9.0
Debian Debian Linux 10.0
4.6
CVSSv3
CVE-2019-15213
An issue exists in the Linux kernel prior to 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.
Linux Linux Kernel
Netapp H410c Firmware -
Netapp Data Availability Services -
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Solidfire Baseboard Management Controller -
Opensuse Leap 15.1
5.5
CVSSv3
CVE-2019-9072
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in setup_group in elf.c.
Gnu Binutils 2.32
Netapp Hci Management Node -
Netapp Solidfire -
9.8
CVSSv3
CVE-2023-5178
A use-after-free vulnerability was found in drivers/nvme/target/tcp.c` in `nvmet_tcp_free_crypto` due to a logical bug in the NVMe/TCP subsystem in the Linux kernel. This issue may allow a malicious user to cause a use-after-free and double-free problem, which may permit remote c...
Linux Linux Kernel 6.6
Linux Linux Kernel
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
Netapp Solidfire \\& Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Solidfire \\& Hci Storage Node -
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »