Vulnerabilities > Netapp > Solidfire Baseboard Management Controller Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-21 | CVE-2021-31440 | Incorrect Calculation vulnerability in multiple products This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel 5.11.15. | 7.0 |
| 2021-05-14 | CVE-2019-25044 | Use After Free vulnerability in multiple products The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation, aka CID-c3e2219216c9. | 7.8 |
| 2021-05-06 | CVE-2020-35519 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. | 7.8 |
| 2021-04-22 | CVE-2021-23133 | Race Condition vulnerability in multiple products A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. | 7.0 |
| 2021-04-19 | CVE-2021-3506 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.12.0-rc4. | 7.1 |
| 2021-03-20 | CVE-2021-28952 | Classic Buffer Overflow vulnerability in multiple products An issue was discovered in the Linux kernel through 5.11.8. | 7.8 |
| 2021-03-17 | CVE-2021-28660 | Out-of-bounds Write vulnerability in multiple products rtw_wx_set_scan in drivers/staging/rtl8188eu/os_dep/ioctl_linux.c in the Linux kernel through 5.11.6 allows writing beyond the end of the ->ssid[] array. | 8.8 |
| 2021-03-15 | CVE-2021-28375 | Missing Authorization vulnerability in multiple products An issue was discovered in the Linux kernel through 5.11.6. | 7.8 |
| 2020-12-09 | CVE-2020-29661 | Improper Locking vulnerability in multiple products A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. | 7.8 |
| 2020-12-08 | CVE-2020-25692 | NULL Pointer Dereference vulnerability in multiple products A NULL pointer dereference was found in OpenLDAP server and was fixed in openldap 2.4.55, during a request for renaming RDNs. | 7.5 |