Vulnerabilities > Netapp > H500S Firmware
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-02-23 | CVE-2023-23914 | Cleartext Transmission of Sensitive Information vulnerability in multiple products A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality fail when multiple URLs are requested serially. | 9.1 |
2023-02-23 | CVE-2023-23915 | Cleartext Transmission of Sensitive Information vulnerability in multiple products A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. | 6.5 |
2023-02-23 | CVE-2023-23916 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms, meaning that a server response can be compressed multiple times and potentially with differentalgorithms. | 6.5 |
2022-12-18 | CVE-2022-47518 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in the Linux kernel before 6.0.11. | 7.8 |
2022-12-18 | CVE-2022-47519 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in the Linux kernel before 6.0.11. | 7.8 |
2022-12-18 | CVE-2022-47520 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in the Linux kernel before 6.0.11. | 7.1 |
2022-12-18 | CVE-2022-47521 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in the Linux kernel before 6.0.11. | 7.8 |
2022-12-05 | CVE-2022-32221 | Exposure of Resource to Wrong Sphere vulnerability in multiple products When doing HTTP(S) transfers, libcurl might erroneously use the read callback (`CURLOPT_READFUNCTION`) to ask for data to send, even when the `CURLOPT_POSTFIELDS` option has been set, if the same handle previously was used to issue a `PUT` request which used that callback. | 9.8 |
2022-12-05 | CVE-2022-35260 | Out-of-bounds Write vulnerability in multiple products curl can be told to parse a `.netrc` file for credentials. | 6.5 |
2022-11-27 | CVE-2022-45934 | Integer Overflow or Wraparound vulnerability in multiple products An issue was discovered in the Linux kernel through 6.0.10. | 7.8 |