NetApp Hyper Converged Infrastructure (HCI) Storage Nodes
Approved changes feed: RSS · Atom
cpe:2.3:a:netapp:hci_storage_nodes:-:*:*:*:*:*:*:*
part: a version: - update: *
| Vendor | Netapp (f19678f6-cb27-5a55-8852-34b249f80ef9) |
|---|---|
| Product | Hci Storage Nodes (037a9b3f-7bf0-5b7a-8166-73a80e9ab043) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-32487 |
vulnerable | 2026-06-03 14:55:41.131198 |
Details available
less through 653 allows OS command execution via a newline character in the name of a file, because quoting is mishandled in filename.c. Exploitation typically requires use with attacker-controlled file names, such as the files extracted from an untrusted archive. Exploitation also requires the LESSOPEN environment variable, but this is set by default in many common cases.
Published: 2024-04-13T00:00:00.000Z
Updated: 2024-08-02T02:13:39.027Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-32250 |
vulnerable | 2026-06-03 14:51:57.940117 |
Session race condition remote code execution vulnerability
CRITICAL (9)
A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2_SESSION_SETUP commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this vulnerability to execute code in the context of the kernel.
Published: 2023-07-10T15:09:37.474Z
Updated: 2025-02-13T16:50:28.282Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-12464 |
vulnerable | 2026-06-03 14:41:34.631488 |
Details available
usb_sg_cancel in drivers/usb/core/message.c in the Linux kernel before 5.6.8 has a use-after-free because a transfer occurs without a reference, aka CID-056ad39ee925.
Published: 2020-04-29T17:59:51.000Z
Updated: 2024-08-04T11:56:52.059Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-7657 |
vulnerable | 2026-06-03 14:37:37.681661 |
Details available
In Eclipse Jetty, versions 9.2.x and older, 9.3.x (all configurations), and 9.4.x (non-default configuration with RFC2616 compliance enabled), transfer-encoding chunks are handled poorly. The chunk length parsing was vulnerable to an integer overflow. Thus a large chunk size could be interpreted as a smaller chunk size and content sent as chunk body could be interpreted as a pipelined request. If Jetty was deployed behind an intermediary that imposed some authorization and that intermediary allowed arbitrarily large chunks to be passed on unchanged, then this flaw could be used to bypass the authorization imposed by the intermediary as the fake pipelined request would not be interpreted by the intermediary as a request.
Published: 2018-06-26T16:00:00.000Z
Updated: 2024-08-05T16:12:27.850Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-5195 |
vulnerable | 2026-06-03 14:35:54.605534 |
Details available
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka "Dirty COW."
Published: 2016-11-10T21:00:00.000Z
Updated: 2025-11-04T16:09:08.278Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.