Known Vulnerabilities for Solidfire Baseboard Management Controller by Netapp
Listed below are 10 of the newest known vulnerabilities associated with "Solidfire Baseboard Management Controller" by "Netapp".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
|CVE||Shortened Description||Severity||Publish Date||Last Modified|
|CVE-2021-28660||rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond th...||8.8 - HIGH||2021-03-17||2023-01-19|
|CVE-2021-27365||An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length cons...||7.8 - HIGH||2021-03-07||2021-12-10|
|CVE-2021-27364||An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ...||7.1 - HIGH||2021-03-07||2021-12-08|
|CVE-2021-26708||A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK impl...||7 - HIGH||2021-02-05||2022-06-28|
|CVE-2021-23133||A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation fro...||7 - HIGH||2021-04-22||2022-10-07|
|CVE-2021-22947||When curl >= 7.20.0 and <= 7.78.0 connects to an IMAP or POP3 server to retrieve data using STARTTLS to upgrade to TLS securi...||5.9 - MEDIUM||2021-09-29||2023-01-05|
|CVE-2021-22946||A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP ser...||7.5 - HIGH||2021-09-29||2023-01-05|
|CVE-2021-22945||When sending data to an MQTT server, libcurl <= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to a...||9.1 - CRITICAL||2021-09-23||2022-12-22|
|CVE-2021-22543||An issue was discovered in Linux: KVM through Improper handling of VM_IO|VM_PFNMAP vmas in KVM can bypass RO checks and can l...||7.8 - HIGH||2021-05-26||2022-04-01|
|CVE-2021-3612||An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in ...||7.8 - HIGH||2021-07-09||2023-01-11|
Popular searches for Solidfire Baseboard Management Controller
CVE-2019-17274 Default Privileged Account Vulnerability in the NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller | NetApp Product Securitysecurity.netapp.com/advisory/ntap-20200226-0001
E-2019-17274 Default Privileged Account Vulnerability in the NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller | NetApp Product Security NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller BMC firmware versions 13.x prior to 13.1P1 were shipped with a default account enabled that could allow unauthorized arbitrary command execution via local access.NetApp Intelligent Platform Management Interface NetApp FAS Vulnerability (computing) Common Vulnerabilities and Exposures PowerQUICC Firmware ONTAP Command (computing) Computer data storage Software Patch (computing) Plug-in (computing) BMC Software Computer security Cloud computing Operating system C.D. FAS User (computing) VMware vSphere
CVE-2020-8573 Default Account Vulnerability in the NetApp HCI Baseboard Management Controller (BMC) - H610C, H615C and H610S | NetApp Product Securitysecurity.netapp.com/advisory/ntap-20200626-0001
E-2020-8573 Default Account Vulnerability in the NetApp HCI Baseboard Management Controller BMC - H610C, H615C and H610S | NetApp Product Security The NetApp HCI H610C, H615C and H610S Baseboard Management Controllers BMC are shipped with a documented default account and password that should be changed during the initial node setup.
During upgrades to Element 11.8 and 12.0 or the Compute Firmware Bundle 12.2.92 the BMC account password on the H610C, H615C and H610S platforms is reset to the default documented value which could allow remote attackers to cause a Denial of Service DoS .