Netapp Solidfire_baseboard_management_controller_firmware
70 CVEs affecting Netapp Solidfire_baseboard_management_controller_firmware. Latest disclosed: 2021-10-11. Critical: 3, High: 39.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-33574 | Critical | 9.8 | 2021-05-25 | The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object (pass… |
CVE-2019-5481 | Critical | 9.8 | 2019-09-16 | Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3. |
CVE-2021-22945 | Critical | 9.1 | 2021-09-23 | When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and bo… |
CVE-2021-28660 | High | 8.8 | 2021-03-17 | rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array. NOTE… |
CVE-2020-36158 | High | 8.8 | 2021-01-05 | mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbit… |
CVE-2021-22901 | High | 8.1 | 2021-06-11 | curl 7.75.0 through 7.76.1 suffers from a use-after-free vulnerability resulting in already freed memory being used when a TLS 1.3 session ticket arrives over… |
CVE-2020-14305 | High | 8.1 | 2020-12-02 | An out-of-bounds memory write flaw was found in how the Linux kernel’s Voice Over IP H.323 connection tracking functionality handled connections on ipv6 port 1… |
CVE-2021-42252 | High | 7.8 | 2021-10-11 | An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the A… |
CVE-2021-42008 | High | 7.8 | 2021-10-05 | The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the C… |
CVE-2021-41864 | High | 7.8 | 2021-10-02 | prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer ove… |
CVE-2021-3612 | High | 7.8 | 2021-07-09 | An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the way the user calls ioctl JSIOC… |
CVE-2019-25045 | High | 7.8 | 2021-06-07 | An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrm_state_fini panic, aka CID-dbb2483b2a46. |
CVE-2021-22543 | High | 7.8 | 2021-05-26 | An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead to pages being freed while sti… |
CVE-2020-25671 | High | 7.8 | 2021-05-26 | A vulnerability was found in Linux Kernel, where a refcount leak in llcp_sock_connect() causing use-after-free which might lead to privilege escalations. |
CVE-2020-25670 | High | 7.8 | 2021-05-26 | A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privilege escalations. |
CVE-2019-25044 | High | 7.8 | 2021-05-14 | The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalatio… |
CVE-2020-35519 | High | 7.8 | 2021-05-06 | An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. A bounds check failure allows a loca… |
CVE-2021-28952 | High | 7.8 | 2021-03-20 | An issue was discovered in the Linux kernel through 5.11.8. The sound/soc/qcom/sdm845.c soundwire device driver has a buffer overflow when an unexpected port I… |
CVE-2021-28375 | High | 7.8 | 2021-03-15 | An issue was discovered in the Linux kernel through 5.11.6. fastrpc_internal_invoke in drivers/misc/fastrpc.c does not prevent user applications from sending k… |
CVE-2021-27365 | High | 7.8 | 2021-03-07 | An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed… |