Known Vulnerabilities for Solidfire Baseboard Management Controller by Netapp

Listed below are 10 of the newest known vulnerabilities associated with "Solidfire Baseboard Management Controller" by "Netapp".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-28660 rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond th... 8.8 - HIGH 2021-03-17 2023-01-19
CVE-2021-27365 An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length cons... 7.8 - HIGH 2021-03-07 2021-12-10
CVE-2021-27364 An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ... 7.1 - HIGH 2021-03-07 2021-12-08
CVE-2021-26708 A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK impl... 7 - HIGH 2021-02-05 2022-06-28
CVE-2021-23133 A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation fro... 7 - HIGH 2021-04-22 2022-10-07
CVE-2021-22947 When curl >= 7.20.0 and <= 7.78.0 connects to an IMAP or POP3 server to retrieve data using STARTTLS to upgrade to TLS securi... 5.9 - MEDIUM 2021-09-29 2023-01-05
CVE-2021-22946 A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP ser... 7.5 - HIGH 2021-09-29 2023-01-05
CVE-2021-22945 When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to a... 9.1 - CRITICAL 2021-09-23 2022-12-22
CVE-2021-22543 An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can l... 7.8 - HIGH 2021-05-26 2022-04-01
CVE-2021-3612 An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in ... 7.8 - HIGH 2021-07-09 2023-01-11
Results limited to 10 most recent vulnerabilities

Popular searches for Solidfire Baseboard Management Controller

CVE-2019-17274 Default Privileged Account Vulnerability in the NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller | NetApp Product Security

security.netapp.com/advisory/ntap-20200226-0001

E-2019-17274 Default Privileged Account Vulnerability in the NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller | NetApp Product Security NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller BMC firmware versions 13.x prior to 13.1P1 were shipped with a default account enabled that could allow unauthorized arbitrary command execution via local access.

NetApp Intelligent Platform Management Interface NetApp FAS Vulnerability (computing) Common Vulnerabilities and Exposures PowerQUICC Firmware ONTAP Command (computing) Computer data storage Software Patch (computing) Plug-in (computing) BMC Software Computer security Cloud computing Operating system C.D. FAS User (computing) VMware vSphere

CVE-2020-8573 Default Account Vulnerability in the NetApp HCI Baseboard Management Controller (BMC) - H610C, H615C and H610S | NetApp Product Security

security.netapp.com/advisory/ntap-20200626-0001

E-2020-8573 Default Account Vulnerability in the NetApp HCI Baseboard Management Controller BMC - H610C, H615C and H610S | NetApp Product Security The NetApp HCI H610C, H615C and H610S Baseboard Management Controllers BMC are shipped with a documented default account and password that should be changed during the initial node setup.

During upgrades to Element 11.8 and 12.0 or the Compute Firmware Bundle 12.2.92 the BMC account password on the H610C, H615C and H610S platforms is reset to the default documented value which could allow remote attackers to cause a Denial of Service DoS .

NetApp Intelligent Platform Management Interface Human–computer interaction Common Vulnerabilities and Exposures Password Vulnerability (computing) BMC Software XML Compute! Firmware Denial-of-service attack Software Computing platform Node (networking) ONTAP Patch (computing) Computer security Reset (computing) Plug-in (computing) User (computing)

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].
© CVE.report 2023 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report