Home/Product/netapp h500s firmware
Product

netapp h500s firmware

289 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-54085
all versions
AMI’s SPx contains a vulnerability in the BMC where an Attacker may bypass authentication remotely through the Redfish Host Inte
9.8CRITICAL
 CVE-2025-24928
all versions
libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit th
7.8HIGH
 CVE-2024-56171
all versions
libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTable
7.8HIGH
 CVE-2025-0665
all versions
libcurl would wrongly close the same eventfd file descriptor twice when taking down a connection channel after having completed a
7.0HIGH
 CVE-2025-0167
all versions
When asked to use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the firs
3.4LOW
 CVE-2024-40896
all versions
In libxml2 2.11 before 2.11.9, 2.12 before 2.12.9, and 2.13 before 2.13.3, the SAX parser can produce events for external entities
9.1CRITICAL
 CVE-2024-11053
all versions
When asked to both use a .netrc file for credentials and to follow HTTP redirects, curl could leak the password used for the fir
3.4LOW
 CVE-2024-50602
all versions
An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can
5.9MEDIUM
 CVE-2024-8096
all versions
When curl is told to use the Certificate Status Request TLS extension, often referred to as OCSP stapling, to verify that the serv
6.5MEDIUM
 CVE-2024-6119
all versions
Issue summary: Applications performing certificate name checks (e.g., TLS clients checking server certificates) may attempt to rea
7.5HIGH
 CVE-2024-36958
all versions
In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix nfsd4_encode_fattr4() crasher Ensure that args.acl
5.5MEDIUM
 CVE-2024-33602
all versions
nscd: netgroup cache assumes NSS callback uses in-buffer strings The Name Service Cache Daemon's (nscd) netgroup cache can corrup
7.4HIGH
 CVE-2024-33601
all versions
nscd: netgroup cache may terminate daemon on memory allocation failure The Name Service Cache Daemon's (nscd) netgroup cache uses
7.3HIGH
 CVE-2024-33600
all versions
nscd: Null pointer crashes after notfound response If the Name Service Cache Daemon's (nscd) cache fails to add a not-found netgr
5.9MEDIUM
 CVE-2024-33599
all versions
nscd: Stack-based buffer overflow in netgroup cache If the Name Service Cache Daemon's (nscd) fixed size cache is exhausted by cl
8.1HIGH
 CVE-2024-2466
all versions
libcurl did not check the server certificate of TLS connections done to a host specified as an IP address, when built to use mbedT
6.5MEDIUM
 CVE-2024-2398
all versions
When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses
8.6HIGH
 CVE-2024-2379
all versions
libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to u
6.3MEDIUM
 CVE-2024-2004
all versions
When a protocol selection parameter option disables all protocols without adding any then the default set of protocols would remai
3.5LOW
 CVE-2024-28757
all versions
libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_Exter
7.5HIGH
 CVE-2023-5363
all versions
Issue summary: A bug has been identified in the processing of key and initialisation vector (IV) lengths. This can lead to potent
7.5HIGH
 CVE-2023-40791
all versions
extract_user_to_sg in lib/scatterlist.c in the Linux kernel before 6.4.12 fails to unpin pages in a certain situation, as demonstr
6.3MEDIUM
 CVE-2023-4911
all versions
A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment varia
7.8HIGH
 CVE-2023-4236
all versions
A flaw in the networking code handling DNS-over-TLS queries may cause named to terminate unexpectedly due to an assertion failur
7.5HIGH
 CVE-2023-4527
all versions
A flaw was found in glibc. When the getaddrinfo function is called with the AF_UNSPEC address family and the system is configured
6.5MEDIUM
 CVE-2023-4813
all versions
A flaw has been identified in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resultin
5.9MEDIUM
 CVE-2023-4273
all versions
A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstr
6.0MEDIUM
 CVE-2023-32252
all versions
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handlin
7.5HIGH
 CVE-2023-3212
all versions
A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. It occurs on corrupt gfs2 file systems whe
4.4MEDIUM
 CVE-2023-2911
all versions
If the recursive-clients quota is reached on a BIND 9 resolver configured with both stale-answer-enable yes; and `stale-answer
7.5HIGH
 CVE-2023-2829
all versions
A named instance configured to run as a DNSSEC-validating recursive resolver with the Aggressive Use of DNSSEC-Validated Cache (
7.5HIGH
 CVE-2023-2828
all versions
Every named instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries i
7.5HIGH
 CVE-2023-35788
all versions
An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bound
7.8HIGH
 CVE-2023-3111
all versions
A use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possib
7.8HIGH
 CVE-2023-2953
all versions
A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.
7.5HIGH
 CVE-2023-2898
all versions
There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a loca
4.7MEDIUM
 CVE-2023-28322
all versions
An information disclosure vulnerability exists in curl <v8.1.0 when doing HTTP(S) transfers, libcurl might erroneously use the rea
3.7LOW
 CVE-2023-28321
all versions
An improper certificate validation vulnerability exists in curl <v8.1.0 in the way it supports matching of wildcard patterns when
5.9MEDIUM
 CVE-2023-28320
all versions
A denial of service vulnerability exists in curl <v8.1.0 in the way libcurl provides several different backends for resolving host
5.9MEDIUM
 CVE-2023-28319
all versions
A use after free vulnerability exists in curl <v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key usi
7.5HIGH
 CVE-2023-33250
all versions
The Linux kernel 6.3 has a use-after-free in iopt_unmap_iova_range in drivers/iommu/iommufd/io_pagetable.c.
4.4MEDIUM
 CVE-2023-2124
all versions
An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system in how a user restores an XFS image after fa
7.8HIGH
 CVE-2023-0045
all versions
The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ib_prctl_set function
4.7MEDIUM
 CVE-2023-2269
all versions
A denial of service problem was found, due to a possible recursive locking scenario, resulting in a deadlock in table_clear in dri
4.4MEDIUM
 CVE-2023-2007
all versions
The specific flaw exists within the DPT I2O Controller driver. The issue results from the lack of proper locking when performing o
7.8HIGH
 CVE-2023-28464
all versions
hci_conn_cleanup in net/bluetooth/hci_conn.c in the Linux kernel through 6.2.9 has a use-after-free (observed in hci_conn_hash_flu
7.8HIGH
 CVE-2023-27538
all versions
An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection d
5.5MEDIUM
 CVE-2023-27537
all versions
A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduce
5.9MEDIUM
 CVE-2023-27536
all versions
An authentication bypass vulnerability exists libcurl <8.0.0 in the connection reuse feature which can reuse previously establishe
5.9MEDIUM
 CVE-2023-27535
all versions
An authentication bypass vulnerability exists in libcurl <8.0.0 in the FTP connection reuse feature that can result in wrong crede
5.9MEDIUM
 CVE-2023-27534
all versions
A path traversal vulnerability exists in curl <8.0.0 SFTP implementation causes the tilde (~) character to be wrongly replaced whe
8.8HIGH
 CVE-2023-27533
all versions
A vulnerability in input validation exists in curl <8.0 during communication using the TELNET protocol may allow an attacker to pa
8.8HIGH
 CVE-2023-1380
all versions
A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c i
7.1HIGH
 CVE-2023-1077
all versions
In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused
7.0HIGH
 CVE-2023-0386
all versions
A flaw was found in the Linux kernel, where unauthorized access to the execution of the setuid file with capabilities was found in
7.8HIGH
 CVE-2023-26545
all versions
In the Linux kernel before 6.1.13, there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sy
4.7MEDIUM
 CVE-2023-23916
all versions
An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compress
6.5MEDIUM
 CVE-2023-23915
all versions
A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to beh
6.5MEDIUM
 CVE-2023-23914
all versions
A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality fail w
9.1CRITICAL
 CVE-2022-47521
all versions
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_CHANNEL_LIST in drivers/net/wi
7.8HIGH
 CVE-2022-47520
all versions
An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hi
7.1HIGH
 CVE-2022-47519
all versions
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of IEEE80211_P2P_ATTR_OPER_CHANNEL in drivers/net/wi
7.8HIGH
 CVE-2022-47518
all versions
An issue was discovered in the Linux kernel before 6.0.11. Missing validation of the number of channels in drivers/net/wireless/mi
7.8HIGH
 CVE-2022-35260
all versions
curl can be told to parse a .netrc file for credentials. If that file endsin a line with 4095 consecutive non-white space letter
6.5MEDIUM
 CVE-2022-32221
all versions
When doing HTTP(S) transfers, libcurl might erroneously use the read callback (CURLOPT_READFUNCTION) to ask for data to send, ev
9.8CRITICAL
 CVE-2022-45934
all versions
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparou
7.8HIGH
 CVE-2022-45919
all versions
An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur
7.0HIGH
 CVE-2022-45888
all versions
An issue was discovered in the Linux kernel through 6.0.9. drivers/char/xillybus/xillyusb.c has a race condition and use-after-fre
6.4MEDIUM
 CVE-2022-45887
all versions
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusb_dec.c has a memory leak because of th
4.7MEDIUM
 CVE-2022-45886
all versions
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_op
7.0HIGH
 CVE-2022-45885
all versions
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_frontend.c has a race condition that can cau
7.0HIGH
 CVE-2022-45884
all versions
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_re
7.0HIGH
 CVE-2022-40304
all versions
An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially
7.8HIGH
 CVE-2022-40303
all versions
An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option
7.5HIGH
 CVE-2022-44793
all versions
handle_ipv6IpForwarding in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.4.3 through 5.9.3 has a NULL Pointer Exception bug tha
6.5MEDIUM
 CVE-2022-44792
all versions
handle_ipDefaultTTL in agent/mibgroup/ip-mib/ip_scalars.c in Net-SNMP 5.8 through 5.9.3 has a NULL Pointer Exception bug that can
6.5MEDIUM
 CVE-2022-43945
all versions
The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow. NFSD tracks the number
7.5HIGH
 CVE-2022-42915
all versions
curl before 7.86.0 has a double free. If curl is told to use an HTTP proxy for a transfer with a non-HTTP(S) URL, it sets up the c
8.1HIGH
 CVE-2022-43680
all versions
In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCr
7.5HIGH
 CVE-2022-3649
all versions
A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfs_new_inode of the
3.1LOW
 CVE-2022-3564
all versions
A vulnerability classified as critical was found in Linux Kernel. Affected by this vulnerability is the function l2cap_reassemble_
5.5MEDIUM
 CVE-2022-3545
all versions
A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is the function area_cac
5.5MEDIUM
 CVE-2022-35252
all versions
When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are s
3.7LOW
 CVE-2022-3202
all versions
A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System (JFS)in the Linux kernel. This could allow a
7.1HIGH
 CVE-2022-2964
all versions
A flaw was found in the Linux kernel’s driver for the ASIX AX88179_178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The vulnerab
7.8HIGH
 CVE-2022-2526
all versions
A use-after-free vulnerability was found in systemd. This issue occurs due to the on_stream_io() function and dns_stream_complete(
9.8CRITICAL
 CVE-2022-39046
all versions
An issue was discovered in the GNU C Library (glibc) 2.36. When the syslog function is passed a crafted input string larger than 1
7.5HIGH
 CVE-2022-2961
all versions
A use-after-free flaw was found in the Linux kernel’s PLP Rose functionality in the way a user triggers a race condition by call
7.0HIGH
 CVE-2022-1199
all versions
A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the
7.5HIGH
 CVE-2021-4204
all versions
An out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation. This flaw allo
7.1HIGH
 CVE-2021-3999
all versions
A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of
7.8HIGH
 CVE-2021-3998
all versions
A flaw was found in glibc. The realpath() function can mistakenly return an unexpected value, potentially leading to information l
7.5HIGH
 CVE-2022-2938
all versions
A flaw was found in the Linux kernel's implementation of Pressure Stall Information. While the feature is disabled by default, it
7.8HIGH
 CVE-2022-2873
all versions
An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user tr
5.5MEDIUM
 CVE-2022-1973
all versions
A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. This flaw allows a loca
7.1HIGH
 CVE-2022-37434
all versions
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra fie
9.8CRITICAL
 CVE-2022-36123
all versions
The Linux kernel before 5.18.13 lacks a certain clear operation for the block starting symbol (.bss). This allows Xen PV guest OS
7.8HIGH
 CVE-2022-36879
all versions
An issue was discovered in the Linux kernel through 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount t
5.5MEDIUM
 CVE-2022-1671
all versions
A NULL pointer dereference flaw was found in rxrpc_preparse_s in net/rxrpc/server_key.c in the Linux kernel. This flaw allows a lo
7.1HIGH
 CVE-2022-31160
all versions
jQuery UI is a curated set of user interface interactions, effects, widgets, and themes built on top of jQuery. Versions prior to
6.1MEDIUM
 CVE-2022-32208
all versions
When curl < 7.84.0 does FTP transfers secured by krb5, it handles message verification failures wrongly. This flaw makes it possib
5.9MEDIUM
 CVE-2022-32207
all versions
When curl < 7.84.0 saves cookies, alt-svc and hsts data to local files, it makes the operation atomic by finalizing the operation
9.8CRITICAL
 CVE-2022-32206
all versions
curl < 7.84.0 supports "chained" HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and p
6.5MEDIUM
 CVE-2022-32205
all versions
A malicious server can serve excessive amounts of Set-Cookie: headers in a HTTP response to curl and curl < 7.84.0 stores all of
4.3MEDIUM
 CVE-2022-2318
all versions
There are use-after-free vulnerabilities caused by timer handler in net/rose/rose_timer.c of linux that allow attackers to crash l
5.5MEDIUM
 CVE-2022-2097
all versions
AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data
5.3MEDIUM
 CVE-2022-34918
all versions
An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflo
7.8HIGH
 CVE-2022-2274
all versions
The OpenSSL 3.0.4 release introduced a serious bug in the RSA implementation for X86_64 CPUs supporting the AVX512IFMA instruction
9.8CRITICAL
 CVE-2022-2068
all versions
In addition to the c_rehash shell command injection identified in CVE-2022-1292, further circumstances where the c_rehash script d
7.3HIGH
 CVE-2022-1998
all versions
A use after free in the Linux kernel File System notify functionality was found in the way user triggers copy_info_records_to_user
7.8HIGH
 CVE-2022-32250
all versions
net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escal
7.8HIGH
 CVE-2022-30115
all versions
Using its HSTS support, curl can be instructed to use HTTPS directly insteadof using an insecure clear-text HTTP step even when HT
4.3MEDIUM
 CVE-2022-27781
all versions
libcurl provides the CURLOPT_CERTINFO option to allow applications torequest details to be returned about a server's certificate
7.5HIGH
 CVE-2022-27780
all versions
The curl URL parser wrongly accepts percent-encoded URL separators like '/'when decoding the host name part of a URL, making it a
7.5HIGH
 CVE-2022-27779
all versions
libcurl wrongly allows cookies to be set for Top Level Domains (TLDs) if thehost name is provided with a trailing dot.curl can be
5.3MEDIUM
 CVE-2022-27776
all versions
A insufficiently protected credentials vulnerability in fixed in curl 7.83.0 might leak authentication or cookie header data on HT
6.5MEDIUM
 CVE-2022-27775
all versions
An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using an IPv6 address that was in t
7.5HIGH
 CVE-2022-27774
all versions
An insufficiently protected credentials vulnerability exists in curl 4.9 to and include curl 7.82.0 are affected that could allow
5.7MEDIUM
 CVE-2022-1786
all versions
A use-after-free flaw was found in the Linux kernel’s io_uring subsystem in the way a user sets up a ring with IORING_SETUP_IOPO
7.8HIGH
 CVE-2022-1652
all versions
Linux Kernel could allow a local attacker to execute arbitrary code on the system, caused by a concurrency use-after-free flaw in
7.8HIGH
 CVE-2021-44080
all versions
A Command Injection vulnerability in httpd web server (setup.cgi) in SerComm h500s, FW: lowi-h500s-v3.4.22 allows logged in admini
7.2HIGH
 CVE-2022-22576
all versions
An improper authentication vulnerability exists in curl 7.33.0 to and including 7.82.0 which might allow reuse OAUTH2-authenticate
8.1HIGH
 CVE-2022-1882
all versions
A use-after-free flaw was found in the Linux kernel’s pipes functionality in how a user performs manipulations with the pipe pos
7.8HIGH
 CVE-2022-1678
all versions
An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memo
5.9MEDIUM
 CVE-2022-1183
all versions
On vulnerable configurations, the named daemon may, in some circumstances, terminate with an assertion failure. Vulnerable configu
7.5HIGH
 CVE-2022-1734
all versions
A flaw in Linux Kernel found in nfcmrvl_nci_unregister_dev() in drivers/nfc/nfcmrvl/main.c can lead to use after free both read or
7.0HIGH
 CVE-2022-29581
all versions
Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation
7.8HIGH
 CVE-2022-1116
all versions
Integer Overflow or Wraparound vulnerability in io_uring of Linux Kernel allows local attacker to cause memory corruption and esca
7.8HIGH
 CVE-2022-1587
all versions
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit
9.1CRITICAL
 CVE-2022-1586
all versions
An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2
9.1CRITICAL
 CVE-2022-1679
all versions
A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wai
7.8HIGH
 CVE-2022-30594
all versions
The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended rest
7.8HIGH
 CVE-2022-29155
all versions
In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to
9.8CRITICAL
 CVE-2022-1473
all versions
The OPENSSL_LH_flush() function, which empties a hash table, contains a bug that breaks reuse of the memory occuppied by the remov
7.5HIGH
 CVE-2022-1434
all versions
The OpenSSL 3.0 implementation of the RC4-MD5 ciphersuite incorrectly uses the AAD data as the MAC key. This makes the MAC key tri
5.9MEDIUM
 CVE-2022-1343
all versions
The function OCSP_basic_verify verifies the signer certificate on an OCSP response. In the case where the (non-default) flag OCS
5.3MEDIUM
 CVE-2022-1292
all versions
The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by so
7.3HIGH
 CVE-2022-29824
all versions
In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf) and tree.c (xmlBuffer) don't check for integer ove
6.5MEDIUM
 CVE-2022-29968
all versions
An issue was discovered in the Linux kernel through 5.17.5. io_rw_init_file in fs/io_uring.c lacks initialization of kiocb-private
7.8HIGH
 CVE-2022-1353
all versions
A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unpriv
7.1HIGH
 CVE-2022-1048
all versions
A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_para
7.0HIGH
 CVE-2022-29156
all versions
drivers/infiniband/ulp/rtrs/rtrs-clt.c in the Linux kernel before 5.16.12 has a double free related to rtrs_clt_dev_release.
7.8HIGH
 CVE-2022-28893
all versions
The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended sta
7.8HIGH
 CVE-2022-28796
all versions
jbd2_journal_wait_updates in fs/jbd2/transaction.c in the Linux kernel before 5.17.1 has a use-after-free caused by a transaction_
7.0HIGH
 CVE-2022-28389
all versions
mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double free.
5.5MEDIUM
 CVE-2022-28388
all versions
usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.
5.5MEDIUM
 CVE-2022-0998
all versions
An integer overflow flaw was found in the Linux kernel’s virtio device driver code in the way a user triggers the vhost_vdpa_con
7.8HIGH
 CVE-2022-1055
all versions
A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The
7.8HIGH
 CVE-2022-0995
all versions
An out-of-bounds (OOB) memory write flaw was found in the Linux kernel’s watch_queue event notification subsystem. This flaw can
7.8HIGH
 CVE-2022-0500
all versions
A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux ker
7.8HIGH
 CVE-2022-0435
all versions
A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious
8.8HIGH
 CVE-2022-0330
all versions
A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the way a user may run malicio
7.8HIGH
 CVE-2021-4203
all versions
A use-after-free read flaw was found in sock_getsockopt() in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen
6.8MEDIUM
 CVE-2021-4157
all versions
An out of memory bounds write flaw (1 or 2 bytes of memory) in the Linux kernel NFS subsystem was found in the way users use mirro
8.0HIGH
 CVE-2018-25032
all versions
zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.
7.5HIGH
 CVE-2021-4197
all versions
An unprivileged write to the file handler flaw in the Linux kernel's control groups and namespaces subsystem was found in the way
7.8HIGH
 CVE-2021-25220
all versions
BIND 9.11.0 - 9.11.36 9.12.0 - 9.16.26 9.17.0 - 9.18.0 BIND Supported Preview Editions: 9.11.4-S1 - 9.11.36-S1 9.16.8-S1 - 9.16.26
6.8MEDIUM
 CVE-2022-0635
all versions
Versions affected: BIND 9.18.0 When a vulnerable version of named receives a series of specific queries, the named process will ev
7.5HIGH
 CVE-2022-0396
all versions
BIND 9.16.11 - 9.16.26, 9.17.0 - 9.18.0 and versions 9.16.11-S1 - 9.16.26-S1 of the BIND Supported Preview Edition. Specifically c
5.3MEDIUM
 CVE-2022-27666
all versions
A heap buffer overflow flaw was found in IPsec ESP transformation code in net/ipv4/esp4.c and net/ipv6/esp6.c. This flaw allows a
7.8HIGH
 CVE-2022-0667
all versions
When the vulnerability is triggered the BIND process will exit. BIND 9.18.0
7.5HIGH
 CVE-2022-1011
all versions
A use-after-free flaw was found in the Linux kernel’s FUSE filesystem in the way a user triggers write(). This flaw allows a loc
7.8HIGH
 CVE-2022-0742
all versions
Memory leak in icmp6 implementation in Linux Kernel 5.13+ allows a remote attacker to DoS a host by making it go out-of-memory via
9.1CRITICAL
 CVE-2021-45868
all versions
In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can,
5.5MEDIUM
 CVE-2022-27223
all versions
In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipu
8.8HIGH
 CVE-2022-26966
all versions
An issue was discovered in the Linux kernel before 5.16.12. drivers/net/usb/sr9700.c allows attackers to obtain sensitive informat
5.5MEDIUM
 CVE-2022-0847
all versions
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_
7.8HIGH
 CVE-2022-0516
all versions
A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel.
7.8HIGH
 CVE-2021-3739
all versions
A NULL pointer dereference flaw was found in the btrfs_rm_device function in fs/btrfs/volumes.c in the Linux Kernel, where trigger
7.1HIGH
 CVE-2022-26490
all versions
st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer o
7.8HIGH
 CVE-2021-3743
all versions
An out-of-bounds (OOB) memory read flaw was found in the Qualcomm IPC router protocol in the Linux kernel. A missing sanity check
7.1HIGH
 CVE-2021-3640
all versions
A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO
7.0HIGH
 CVE-2021-3609
all versions
.A flaw was found in the CAN BCM networking protocol in the Linux kernel, where a local attacker can abuse a flaw in the CAN subsy
7.0HIGH
 CVE-2021-3772
all versions
A flaw was found in the Linux SCTP stack. A blind attacker may be able to kill an existing SCTP association through invalid chunks
6.5MEDIUM
 CVE-2022-23308
all versions
valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.
7.5HIGH
 CVE-2020-36516
all versions
An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment
5.9MEDIUM
 CVE-2022-0646
all versions
A flaw use after free in the Linux kernel Management Component Transport Protocol (MCTP) subsystem was found in the way user trigg
7.8HIGH
 CVE-2021-4090
all versions
An out-of-bounds (OOB) memory write flaw was found in the NFSD in the Linux kernel. Missing sanity may lead to a write beyond bmva
7.1HIGH
 CVE-2021-20322
all versions
A flaw in the processing of received ICMP errors (ICMP fragment needed and ICMP redirect) in the Linux kernel functionality was fo
7.4HIGH
 CVE-2022-25265
all versions
In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003
7.8HIGH
 CVE-2022-25258
all versions
An issue was discovered in drivers/usb/gadget/composite.c in the Linux kernel before 5.16.10. The USB Gadget subsystem lacks certa
4.6MEDIUM
 CVE-2021-3760
all versions
A flaw was found in the Linux kernel. A use-after-free vulnerability in the NFC stack can lead to a threat to confidentiality, int
7.8HIGH
 CVE-2021-3753
all versions
A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read
4.7MEDIUM
 CVE-2021-3752
all versions
A use-after-free flaw was found in the Linux kernel’s Bluetooth subsystem in the way user calls connect to the socket and discon
7.1HIGH
 CVE-2022-0185
all versions
A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of
8.4HIGH
 CVE-2022-24958
all versions
drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev-buf release.
7.8HIGH
 CVE-2022-24122
all versions
kernel/ucount.c in the Linux kernel 5.14 through 5.16.4, when unprivileged user namespaces are enabled, allows a use-after-free an
7.8HIGH
 CVE-2021-22600
all versions
A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user through crafted syscalls to esca
6.6MEDIUM
 CVE-2021-34866
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel 5.14-rc3. An attacker m
7.8HIGH
 CVE-2021-4083
all versions
A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way u
7.0HIGH
 CVE-2022-23222
all versions
kernel/bpf/verifier.c in the Linux kernel through 5.15.14 allows local users to gain privileges because of the availability of poi
7.8HIGH
 CVE-2021-45485
all versions
In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain us
7.5HIGH
 CVE-2021-45469
all versions
In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11, there is an out-of-bounds memory access when an inode h
7.8HIGH
 CVE-2021-44733
all versions
A use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel through 5.15.11. This occurs because of
7.0HIGH
 CVE-2021-45100
all versions
The ksmbd server through 3.4.2, as used in the Linux kernel through 5.15.8, sometimes communicates in cleartext even though encryp
7.5HIGH
 CVE-2021-4044
all versions
Internally libssl in OpenSSL calls X509_verify_cert() on the client side to verify a certificate supplied by a server. That functi
7.5HIGH
 CVE-2018-25020
all versions
The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner
7.8HIGH
 CVE-2021-43976
all versions
In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can con
4.6MEDIUM
 CVE-2021-43975
all versions
In the Linux kernel through 5.15.2, hw_atl_utils_fw_rpc_wait in drivers/net/ethernet/aquantia/atlantic/hw_atl/hw_atl_utils.c allow
6.7MEDIUM
 CVE-2021-42377
all versions
An attacker-controlled pointer free in Busybox's hush applet leads to denial of service and possible code execution when processin
9.8CRITICAL
 CVE-2021-42376
all versions
A NULL pointer dereference in Busybox's hush applet leads to denial of service when processing a crafted shell command, due to mis
5.5MEDIUM
 CVE-2021-42375
all versions
An incorrect handling of a special element in Busybox's ash applet leads to denial of service when processing a crafted shell comm
5.5MEDIUM
 CVE-2021-42374
all versions
An out-of-bounds heap read in Busybox's unlzma applet leads to information leak and denial of service when crafted LZMA-compressed
5.3MEDIUM
 CVE-2021-42373
all versions
A NULL pointer dereference in Busybox's man applet leads to denial of service when a section name is supplied but no page argument
5.5MEDIUM
 CVE-2021-43618
all versions
GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 has an mpz/inp_raw.c integer overflow and resultant buffer overflow
7.5HIGH
 CVE-2021-43267
all versions
An issue was discovered in net/tipc/crypto.c in the Linux kernel before 5.14.16. The Transparent Inter-Process Communication (TIPC
9.8CRITICAL
 CVE-2017-5123
all versions
Insufficient data validation in waitid allowed an user to escape sandboxes on Linux.
8.8HIGH
 CVE-2021-43057
all versions
An issue was discovered in the Linux kernel before 5.14.8. A use-after-free in selinux_ptrace_traceme (aka the SELinux handler for
7.8HIGH
 CVE-2021-25219
all versions
In BIND 9.3.0 - 9.11.35, 9.12.0 - 9.16.21, and versions 9.9.3-S1 - 9.11.35-S1 and 9.16.8-S1 - 9.16.21-S1 of BIND Supported Preview
5.3MEDIUM
 CVE-2021-41184
all versions
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the of option of the `.
6.5MEDIUM
 CVE-2021-41183
all versions
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various *Text options o
6.5MEDIUM
 CVE-2021-41182
all versions
jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the altField option of
6.5MEDIUM
 CVE-2021-42327
all versions
dp_link_settings_write in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs.c in the Linux kernel through 5.14.14 allows a h
6.7MEDIUM
 CVE-2021-42252
all versions
An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local a
7.8HIGH
 CVE-2021-42008
all versions
The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input
7.8HIGH
 CVE-2021-41864
all versions
prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eB
7.8HIGH
 CVE-2021-22947
all versions
When curl >= 7.20.0 and <= 7.78.0 connects to an IMAP or POP3 server to retrieve data using STARTTLS to upgrade to TLS security, t
5.9MEDIUM
 CVE-2021-22946
all versions
A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP server (
7.5HIGH
 CVE-2021-22945
all versions
When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an alr
9.1CRITICAL
 CVE-2021-38300
all versions
arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBP
7.8HIGH
 CVE-2021-41073
all versions
loop_rw_iter in fs/io_uring.c in the Linux kernel 5.10 through 5.14.6 allows local users to gain privileges by using IORING_OP_PRO
7.8HIGH
 CVE-2021-40490
all versions
A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel throug
7.0HIGH
 CVE-2021-22926
all versions
libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the `CURLOPT_SSLC
7.5HIGH
 CVE-2021-22925
all versions
curl supports the -t command line option, known as CURLOPT_TELNETOPTIONSin libcurl. This rarely used option is used to send va
5.3MEDIUM
 CVE-2021-22923
all versions
When curl is instructed to get content using the metalink feature, and a user name and password are used to download the metalink
5.3MEDIUM
 CVE-2021-22922
all versions
When curl is instructed to download content using the metalink feature, thecontents is verified against a hash provided in the met
6.5MEDIUM
 CVE-2021-3541
all versions
A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and lea
6.5MEDIUM
 CVE-2021-3612
all versions
An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the w
7.8HIGH
 CVE-2021-22555
all versions
A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c. This allows an attacker t
8.3HIGH
 CVE-2021-28691
all versions
Guest triggered use-after-free in Linux xen-netback A malicious or buggy network PV frontend can force Linux netback to disable th
7.8HIGH
 CVE-2020-28097
all versions
The vgacon subsystem in the Linux kernel before 5.8.10 mishandles software scrollback. There is a vgacon_scrolldelta out-of-bounds
5.9MEDIUM
 CVE-2021-22901
all versions
curl 7.75.0 through 7.76.1 suffers from a use-after-free vulnerability resulting in already freed memory being used when a TLS 1.3
8.1HIGH
 CVE-2021-22897
all versions
curl 7.61.0 through 7.76.1 suffers from exposure of data element to wrong session due to a mistake in the code for CURLOPT_SSL_CIP
5.3MEDIUM
 CVE-2020-36387
all versions
An issue was discovered in the Linux kernel before 5.8.2. fs/io_uring.c has a use-after-free related to io_async_task_func and ctx
7.8HIGH
 CVE-2019-25045
all versions
An issue was discovered in the Linux kernel before 5.0.19. The XFRM subsystem has a use-after-free, related to an xfrm_state_fini
7.8HIGH
 CVE-2018-25015
all versions
An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a
7.8HIGH
 CVE-2020-36385
all versions
An issue was discovered in the Linux kernel before 5.10. drivers/infiniband/core/ucma.c has a use-after-free because the ctx is re
7.8HIGH
 CVE-2021-33200
all versions
kernel/bpf/verifier.c in the Linux kernel through 5.12.7 enforces incorrect limits for pointer arithmetic operations, aka CID-bb01
7.8HIGH
 CVE-2020-27815
all versions
A flaw was found in the JFS filesystem code in the Linux Kernel which allows a local attacker with the ability to set extended att
7.8HIGH
 CVE-2020-25669
all versions
A vulnerability was found in the Linux Kernel where the function sunkbd_reinit having been scheduled by sunkbd_interrupt before su
7.8HIGH
 CVE-2020-25668
all versions
A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use af
7.0HIGH
 CVE-2021-22543
all versions
An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can lead t
7.8HIGH
 CVE-2020-25673
all versions
A vulnerability was found in Linux kernel where non-blocking socket in llcp_sock_connect() leads to leak and eventually hanging-up
5.5MEDIUM
 CVE-2020-25671
all versions
A vulnerability was found in Linux Kernel, where a refcount leak in llcp_sock_connect() causing use-after-free which might lead to
7.8HIGH
 CVE-2020-25670
all versions
A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privi
7.8HIGH
 CVE-2021-33574
all versions
The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification t
9.8CRITICAL
 CVE-2020-25672
all versions
A memory leak vulnerability was found in Linux kernel in llcp_sock_connect
7.5HIGH
 CVE-2021-31440
all versions
This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel 5.11.15. An attacker mu
7.0HIGH
 CVE-2021-3483
all versions
A flaw was found in the Nosy driver in the Linux kernel. This issue allows a device to be inserted twice into a doubly-linked list
7.8HIGH
 CVE-2019-25044
all versions
The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel co
7.8HIGH
 CVE-2021-32399
all versions
net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller.
7.0HIGH
 CVE-2020-35519
all versions
An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. A bound
7.8HIGH
 CVE-2021-3501
all versions
A flaw was found in the Linux kernel in versions before 5.12. The value of internal.ndata, in the KVM API, is mapped to an array i
7.1HIGH
 CVE-2021-25216
all versions
In BIND 9.5.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.11.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported P
8.1HIGH
 CVE-2021-25215
all versions
In BIND 9.0.0 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BIND Supported Pr
7.5HIGH
 CVE-2021-25214
all versions
In BIND 9.8.5 - 9.8.8, 9.9.3 - 9.11.29, 9.12.0 - 9.16.13, and versions BIND 9.9.3-S1 - 9.11.29-S1 and 9.16.8-S1 - 9.16.13-S1 of BI
6.5MEDIUM
 CVE-2021-23133
all versions
A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the
6.7MEDIUM
 CVE-2021-3506
all versions
An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.
7.1HIGH
 CVE-2021-29154
all versions
BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements, allowing them to execute
7.8HIGH
 CVE-2020-35508
all versions
A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent pro
4.5MEDIUM
 CVE-2021-28660
all versions
rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end
8.8HIGH
 CVE-2020-27618
all versions
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences
5.5MEDIUM
 CVE-2020-15025
all versions
ntpd in ntp 4.2.8 before 4.2.8p15 and 4.3.x before 4.3.101 allows remote attackers to cause a denial of service (memory consumptio
4.4MEDIUM
 CVE-2020-14155
all versions
libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.
5.3MEDIUM
 CVE-2020-10732
all versions
A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows an attacker with a local account t
3.3LOW
 CVE-2020-13817
all versions
ntpd in ntp before 4.2.8p14 and 4.3.x before 4.3.100 allows remote attackers to cause a denial of service (daemon exit or system t
7.4HIGH
 CVE-2020-13143
all versions
gadget_dev_desc_UDC_store in drivers/usb/gadget/configfs.c in the Linux kernel 3.16 through 5.6.13 relies on kstrdup without consi
6.5MEDIUM
 CVE-2020-12888
all versions
The VFIO PCI driver in the Linux kernel through 5.6.13 mishandles attempts to access disabled memory space.
5.3MEDIUM
 CVE-2020-12771
all versions
An issue was discovered in the Linux kernel through 5.6.11. btree_gc_coalesce in drivers/md/bcache/btree.c has a deadlock if a coa
5.5MEDIUM
 CVE-2020-12770
all versions
An issue was discovered in the Linux kernel through 5.6.11. sg_write lacks an sg_remove_request call in a certain failure case, ak
6.7MEDIUM
 CVE-2020-12769
all versions
An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers to cause a panic via concurrent c
5.5MEDIUM
 CVE-2020-10690
all versions
There is a use-after-free in kernel versions before 5.5 due to a race condition between the release of ptp_clock and cdev while re
6.5MEDIUM
 CVE-2020-12653
all versions
An issue was found in Linux kernel before 5.5.4. The mwifiex_cmd_append_vsie_tlv() function in drivers/net/wireless/marvell/mwifie
7.8HIGH
 CVE-2020-11022
all versions
In jQuery starting with 1.12.0 and before 3.5.0, passing HTML from untrusted sources - even after sanitizing it - to one of jQuery
6.9MEDIUM
 CVE-2020-11023
all versions
In jQuery versions greater than or equal to 1.0.3 and before 3.5.0, passing HTML containing <option> elements from untrusted sourc
6.9MEDIUM
 CVE-2020-11884
all versions
In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated
7.0HIGH
 CVE-2020-12243
all versions
In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean expressions can result in denial of servic
7.5HIGH
 CVE-2020-8832
all versions
The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 ("The Linux kernel did not properly clear data structures on c
5.5MEDIUM
 CVE-2020-8835
all versions
In the Linux kernel 5.5.0 and newer, the bpf verifier (kernel/bpf/verifier.c) did not properly restrict the register bounds for 32
7.8HIGH
 CVE-2020-7595
all versions
xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.
7.5HIGH
 CVE-2019-20388
all versions
xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.
7.5HIGH
 CVE-2019-2215
all versions
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is requ
7.8HIGH
 CVE-2019-16995
all versions
In the Linux kernel before 5.0.3, a memory leak exits in hsr_dev_finalize() in net/hsr/hsr_device.c if hsr_add_port fails to add a
7.5HIGH
 CVE-2019-14816
all versions
There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel,
7.8HIGH
 CVE-2019-14814
all versions
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux k
7.8HIGH
 CVE-2019-14821
all versions
An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor im
8.8HIGH
 CVE-2019-14835
all versions
A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates
7.8HIGH
 CVE-2019-15538
all versions
An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a
7.5HIGH
 CVE-2018-16871
all versions
A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is a
7.5HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin