Vulnerabilities > Netapp > H300S Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-11-23 CVE-2022-40304 Double Free vulnerability in multiple products
An issue was discovered in libxml2 before 2.10.3.
local
low complexity
xmlsoft netapp apple CWE-415
7.8
2022-11-23 CVE-2022-40303 Integer Overflow or Wraparound vulnerability in multiple products
An issue was discovered in libxml2 before 2.10.3.
network
low complexity
xmlsoft netapp apple CWE-190
7.5
2022-11-04 CVE-2022-43945 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
The Linux kernel NFSD implementation prior to versions 5.19.17 and 6.0.2 are vulnerable to buffer overflow.
network
low complexity
linux netapp CWE-770
7.5
2022-10-29 CVE-2022-42915 Double Free vulnerability in multiple products
curl before 7.86.0 has a double free.
network
high complexity
haxx fedoraproject netapp apple splunk CWE-415
8.1
2022-10-24 CVE-2022-43680 Use After Free vulnerability in multiple products
In libexpat through 2.4.9, there is a use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate in out-of-memory situations.
7.5
2022-10-21 CVE-2022-3649 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A vulnerability was found in Linux Kernel.
local
high complexity
linux debian netapp CWE-119
7.0
2022-10-17 CVE-2022-3564 Race Condition vulnerability in multiple products
A vulnerability classified as critical was found in Linux Kernel.
high complexity
linux debian netapp CWE-362
7.1
2022-10-17 CVE-2022-3545 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A vulnerability has been found in Linux Kernel and classified as critical.
local
low complexity
linux netapp debian CWE-119
7.8
2022-09-23 CVE-2022-35252 When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses.
network
high complexity
haxx netapp apple debian splunk
3.7
2022-09-14 CVE-2022-3202 NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System (JFS)in the Linux kernel.
local
low complexity
linux netapp CWE-476
7.1