Vulnerabilities > Netapp > C400 Firmware

DATE CVE VULNERABILITY TITLE RISK
2024-04-03 CVE-2024-26733 Out-of-bounds Write vulnerability in multiple products
In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arp_req_get(). syzkaller reported an overflown write in arp_req_get().
local
low complexity
linux debian netapp CWE-787
5.5
2024-04-03 CVE-2024-26735 Use After Free vulnerability in multiple products
In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix possible use-after-free and null-ptr-deref The pernet operations structure for the subsystem must be registered before registering the generic netlink family.
local
low complexity
linux debian netapp CWE-416
5.5
2023-03-27 CVE-2023-1077 Type Confusion vulnerability in multiple products
In the Linux kernel, pick_next_rt_entity() may return a type confused entry, not detected by the BUG_ON condition, as the confused entry will not be NULL, but list_head.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused sched_rt_entity,causing memory corruption.
local
high complexity
linux debian netapp CWE-843
7.0