Starwindsoftware Starwind_san_\&_nas
5 CVEs affecting Starwindsoftware Starwind_san_\&_nas. Latest disclosed: 2022-06-03. Critical: 1, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-43527 | Critical | 9.8 | 2021-12-08 | NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. App… |
CVE-2022-32268 | High | 8.8 | 2022-06-03 | StarWind SAN and NAS v0.2 build 1914 allow remote code execution. A flaw was found in REST API in StarWind Stack. REST command, which allows changing the hostn… |
CVE-2020-36385 | High | 7.8 | 2021-06-07 | An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is reached via the ctx_list in som… |
CVE-2021-42739 | Medium | 6.7 | 2021-10-20 | The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/fir… |
CVE-2020-25704 | Medium | 5.5 | 2020-12-02 | A flaw memory leak in the Linux kernel performance monitoring subsystem was found in the way if using PERF_EVENT_IOC_SET_FILTER. A local user could use this fl… |