Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2023-27314

Summary
Assigner-netapp
Assigner Org ID-11fdca00-0482-4c88-a206-37f9c182c87d
Published At-12 Oct, 2023 | 18:26
Updated At-18 Sep, 2024 | 15:02
Rejected At-
Credits

Denial of Service Vulnerability in ONTAP 9

ONTAP 9 versions prior to 9.8P19, 9.9.1P16, 9.10.1P12, 9.11.1P8, 9.12.1P2 and 9.13.1 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to cause a crash of the HTTP service.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
â–¼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:netapp
Assigner Org ID:11fdca00-0482-4c88-a206-37f9c182c87d
Published At:12 Oct, 2023 | 18:26
Updated At:18 Sep, 2024 | 15:02
Rejected At:
â–¼CVE Numbering Authority (CNA)
Denial of Service Vulnerability in ONTAP 9

ONTAP 9 versions prior to 9.8P19, 9.9.1P16, 9.10.1P12, 9.11.1P8, 9.12.1P2 and 9.13.1 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to cause a crash of the HTTP service.

Affected Products
Vendor
NetApp, Inc.NetApp
Product
ONTAP 9
Default Status
unaffected
Versions
Affected
  • From 0 before 9.8P19, 9.9.1P16, 9.10.1P12, 9.11.1P8, 9.12.1P2, 9.13.1 (custom)
Problem Types
TypeCWE IDDescription
CWECWE-400CWE-400 Uncontrolled Resource Consumption
Type: CWE
CWE ID: CWE-400
Description: CWE-400 Uncontrolled Resource Consumption
Metrics
VersionBase scoreBase severityVector
3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://security.netapp.com/advisory/ntap-20231009-0001/
N/A
Hyperlink: https://security.netapp.com/advisory/ntap-20231009-0001/
Resource: N/A
â–¼Authorized Data Publishers (ADP)
1. CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
https://security.netapp.com/advisory/ntap-20231009-0001/
x_transferred
Hyperlink: https://security.netapp.com/advisory/ntap-20231009-0001/
Resource:
x_transferred
2. CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions

Configurations

Workarounds

Exploits

Credits

Timeline
EventDate
Replaced By

Rejected Reason

References
HyperlinkResource
Information is not available yet
â–¼National Vulnerability Database (NVD)
nvd.nist.gov
Source:security-alert@netapp.com
Published At:12 Oct, 2023 | 19:15
Updated At:18 Oct, 2023 | 18:00

ONTAP 9 versions prior to 9.8P19, 9.9.1P16, 9.10.1P12, 9.11.1P8, 9.12.1P2 and 9.13.1 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to cause a crash of the HTTP service.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Secondary3.17.5HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Type: Primary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Type: Secondary
Version: 3.1
Base score: 7.5
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CPE Matches

NetApp, Inc.
netapp
>>clustered_data_ontap>>Versions from 9.0(inclusive) to 9.8(exclusive)
cpe:2.3:a:netapp:clustered_data_ontap:*:*:*:*:*:*:*:*
NetApp, Inc.
netapp
>>clustered_data_ontap>>9.8
cpe:2.3:a:netapp:clustered_data_ontap:9.8:-:*:*:*:*:*:*
NetApp, Inc.
netapp
>>clustered_data_ontap>>9.8
cpe:2.3:a:netapp:clustered_data_ontap:9.8:p7:*:*:*:*:*:*
NetApp, Inc.
netapp
>>clustered_data_ontap>>9.9.1
cpe:2.3:a:netapp:clustered_data_ontap:9.9.1:-:*:*:*:*:*:*
NetApp, Inc.
netapp
>>clustered_data_ontap>>9.9.1
cpe:2.3:a:netapp:clustered_data_ontap:9.9.1:p3:*:*:*:*:*:*
NetApp, Inc.
netapp
>>clustered_data_ontap>>9.10.0
cpe:2.3:a:netapp:clustered_data_ontap:9.10.0:-:*:*:*:*:*:*
NetApp, Inc.
netapp
>>clustered_data_ontap>>9.10.1
cpe:2.3:a:netapp:clustered_data_ontap:9.10.1:-:*:*:*:*:*:*
NetApp, Inc.
netapp
>>clustered_data_ontap>>9.12.0
cpe:2.3:a:netapp:clustered_data_ontap:9.12.0:-:*:*:*:*:*:*
NetApp, Inc.
netapp
>>clustered_data_ontap>>9.13.0
cpe:2.3:a:netapp:clustered_data_ontap:9.13.0:-:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
NVD-CWE-noinfoPrimarynvd@nist.gov
CWE-400Secondarysecurity-alert@netapp.com
CWE ID: NVD-CWE-noinfo
Type: Primary
Source: nvd@nist.gov
CWE ID: CWE-400
Type: Secondary
Source: security-alert@netapp.com
Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References
HyperlinkSourceResource
https://security.netapp.com/advisory/ntap-20231009-0001/security-alert@netapp.com
Vendor Advisory
Hyperlink: https://security.netapp.com/advisory/ntap-20231009-0001/
Source: security-alert@netapp.com
Resource:
Vendor Advisory

Change History

0
Information is not available yet

Similar CVEs

1559Records found

CVE-2022-29404
Matching Score-8
Assigner-Apache Software Foundation
ShareView Details
Matching Score-8
Assigner-Apache Software Foundation
CVSS Score-7.5||HIGH
EPSS-5.68% / 92.05%
||
7 Day CHG~0.00%
Published-08 Jun, 2022 | 10:00
Updated-03 Aug, 2024 | 06:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Denial of service in mod_lua r:parsebody

In Apache HTTP Server 2.4.53 and earlier, a malicious request to a lua script that calls r:parsebody(0) may cause a denial of service due to no default limit on possible input size.

Action-Not Available
Vendor-NetApp, Inc.The Apache Software FoundationFedora Project
Product-http_serverclustered_data_ontapfedoraApache HTTP Server
CWE ID-CWE-770
Allocation of Resources Without Limits or Throttling
CVE-2022-28948
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-3.50% / 87.74%
||
7 Day CHG~0.00%
Published-19 May, 2022 | 19:59
Updated-03 Aug, 2024 | 06:10
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize invalid input.

Action-Not Available
Vendor-yaml_projectn/aNetApp, Inc.
Product-yamlastra_tridentn/a
CWE ID-CWE-502
Deserialization of Untrusted Data
CVE-2019-5508
Matching Score-8
Assigner-NetApp, Inc.
ShareView Details
Matching Score-8
Assigner-NetApp, Inc.
CVSS Score-7.5||HIGH
EPSS-1.32% / 67.37%
||
7 Day CHG~0.00%
Published-25 Oct, 2019 | 18:02
Updated-04 Aug, 2024 | 20:01
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Clustered Data ONTAP versions 9.2 through 9.4 are susceptible to a vulnerability which allows an attacker to use l2ping to cause a Denial of Service (DoS).

Action-Not Available
Vendor-n/aNetApp, Inc.
Product-clustered_data_ontapClustered Data ONTAP
CVE-2019-15166
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-1.6||LOW
EPSS-4.99% / 91.17%
||
7 Day CHG~0.00%
Published-03 Oct, 2019 | 16:01
Updated-03 Dec, 2025 | 19:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
lmp_print in tcpdump lacks certain boundary checks

lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks.

Action-Not Available
Vendor-n/aApple Inc.NetApp, Inc.Canonical Ltd.openSUSEFedora ProjectRed Hat, Inc.Debian GNU/Linuxtcpdump & libpcap
Product-ubuntu_linuxenterprise_linuxleapfedoracloud_backupmac_os_xhci_management_nodesolidfiretcpdumpdebian_linuxn/a
CWE ID-CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CVE-2022-28131
Matching Score-8
Assigner-Go Project
ShareView Details
Matching Score-8
Assigner-Go Project
CVSS Score-7.5||HIGH
EPSS-1.88% / 76.85%
||
7 Day CHG~0.00%
Published-09 Aug, 2022 | 00:00
Updated-03 Aug, 2024 | 05:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Stack exhaustion from deeply nested XML documents in encoding/xml

Uncontrolled recursion in Decoder.Skip in encoding/xml before Go 1.17.12 and Go 1.18.4 allows an attacker to cause a panic due to stack exhaustion via a deeply nested XML document.

Action-Not Available
Vendor-Go standard libraryNetApp, Inc.Fedora ProjectGo
Product-gocloud_insights_telegraffedoraencoding/xml
CWE ID-CWE-674
Uncontrolled Recursion
CVE-2019-5611
Matching Score-8
Assigner-FreeBSD
ShareView Details
Matching Score-8
Assigner-FreeBSD
CVSS Score-7.5||HIGH
EPSS-4.42% / 90.17%
||
7 Day CHG~0.00%
Published-29 Aug, 2019 | 21:37
Updated-04 Aug, 2024 | 20:01
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In FreeBSD 12.0-STABLE before r350828, 12.0-RELEASE before 12.0-RELEASE-p10, 11.3-STABLE before r350829, 11.3-RELEASE before 11.3-RELEASE-p3, and 11.2-RELEASE before 11.2-RELEASE-p14, a missing check in the function to arrange data in a chain of mbufs could cause data returned not to be contiguous. Extra checks in the IPv6 stack could catch the error condition and trigger a kernel panic, leading to a remote denial of service.

Action-Not Available
Vendor-n/aFreeBSD FoundationNetApp, Inc.
Product-freebsdclustered_data_ontapFreeBSD
CWE ID-CWE-20
Improper Input Validation
CVE-2024-49761
Matching Score-8
Assigner-GitHub, Inc.
ShareView Details
Matching Score-8
Assigner-GitHub, Inc.
CVSS Score-6.6||MEDIUM
EPSS-1.43% / 69.77%
||
7 Day CHG~0.00%
Published-28 Oct, 2024 | 14:10
Updated-03 Nov, 2025 | 21:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
REXML ReDoS vulnerability

REXML is an XML toolkit for Ruby. The REXML gem before 3.3.9 has a ReDoS vulnerability when it parses an XML that has many digits between &# and x...; in a hex numeric character reference (&#x...;). This does not happen with Ruby 3.2 or later. Ruby 3.1 is the only affected maintained Ruby. The REXML gem 3.3.9 or later include the patch to fix the vulnerability.

Action-Not Available
Vendor-NetApp, Inc.Ruby
Product-rubyontap_toolsrexmlrexmlrexml
CWE ID-CWE-1333
Inefficient Regular Expression Complexity
CVE-2022-25844
Matching Score-8
Assigner-Snyk
ShareView Details
Matching Score-8
Assigner-Snyk
CVSS Score-5.3||MEDIUM
EPSS-4.66% / 90.63%
||
7 Day CHG~0.00%
Published-01 May, 2022 | 15:25
Updated-20 Nov, 2025 | 17:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Regular Expression Denial of Service (ReDoS)

The package angular after 1.7.0 are vulnerable to Regular Expression Denial of Service (ReDoS) by providing a custom locale rule that makes it possible to assign the parameter in posPre: ' '.repeat() of NUMBER_FORMATS.PATTERNS[1].posPre with a very high value. **Note:** 1) This package has been deprecated and is no longer maintained. 2) The vulnerable versions are 1.7.0 and higher.

Action-Not Available
Vendor-n/aAngularJSFedora ProjectNetApp, Inc.
Product-fedoraangularjsontap_select_deploy_administration_utilityangular
CWE ID-CWE-1333
Inefficient Regular Expression Complexity
CVE-2022-24921
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-3.26% / 86.83%
||
7 Day CHG+0.03%
Published-05 Mar, 2022 | 00:00
Updated-03 Aug, 2024 | 04:29
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via a deeply nested expression.

Action-Not Available
Vendor-n/aNetApp, Inc.GoDebian GNU/Linux
Product-godebian_linuxastra_tridentn/a
CWE ID-CWE-674
Uncontrolled Recursion
CVE-2022-24675
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-5.33% / 91.63%
||
7 Day CHG+0.04%
Published-20 Apr, 2022 | 00:00
Updated-03 Aug, 2024 | 04:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

encoding/pem in Go before 1.17.9 and 1.18.x before 1.18.1 has a Decode stack overflow via a large amount of PEM data.

Action-Not Available
Vendor-n/aNetApp, Inc.Fedora ProjectGo
Product-gofedorakubernetes_monitoring_operatorn/a
CWE ID-CWE-674
Uncontrolled Recursion
CVE-2022-23772
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-2.83% / 84.89%
||
7 Day CHG~0.00%
Published-11 Feb, 2022 | 00:11
Updated-03 Aug, 2024 | 03:51
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption.

Action-Not Available
Vendor-n/aNetApp, Inc.GoDebian GNU/Linux
Product-debian_linuxcloud_insights_telegraf_agentbeegfs_csi_drivergostoragegridkubernetes_monitoring_operatorn/a
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2022-23913
Matching Score-8
Assigner-Apache Software Foundation
ShareView Details
Matching Score-8
Assigner-Apache Software Foundation
CVSS Score-7.5||HIGH
EPSS-2.72% / 84.22%
||
7 Day CHG~0.00%
Published-04 Feb, 2022 | 22:33
Updated-15 Jun, 2026 | 13:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Apache ActiveMQ Artemis DoS

In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability (DoS) through uncontrolled resource consumption of memory.

Action-Not Available
Vendor-The Apache Software FoundationNetApp, Inc.
Product-active_iq_unified_managerartemisoncommand_workflow_automationApache ActiveMQ Artemis
CWE ID-CWE-770
Allocation of Resources Without Limits or Throttling
CVE-2019-20907
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-6.30% / 92.75%
||
7 Day CHG~0.00%
Published-13 Jul, 2020 | 00:00
Updated-05 Aug, 2024 | 02:53
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation.

Action-Not Available
Vendor-n/aCanonical Ltd.openSUSENetApp, Inc.Python Software FoundationOracle CorporationDebian GNU/LinuxFedora Project
Product-ubuntu_linuxdebian_linuxcloud_volumes_ontap_mediatorfedoraactive_iq_unified_managerzfs_storage_appliance_kitpythonleapn/a
CWE ID-CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
CVE-2022-23308
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-6.01% / 92.45%
||
7 Day CHG~0.00%
Published-26 Feb, 2022 | 00:00
Updated-05 May, 2025 | 17:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.

Action-Not Available
Vendor-n/aOracle CorporationNetApp, Inc.Fedora ProjectApple Inc.libxml2 (XMLSoft)Debian GNU/Linux
Product-h410sactive_iq_unified_managerdebian_linuxh500s_firmwarecommunications_cloud_native_core_binding_support_functionbootstrap_osh410c_firmwareh410ch700sh500smysql_workbenchh700e_firmwarezfs_storage_appliance_kitontap_select_deploy_administration_utilitycommunications_cloud_native_core_network_function_cloud_native_environmenth500e_firmwaresolidfire\,_enterprise_sds_\&_hci_storage_nodetvosclustered_data_ontap_antivirus_connectorclustered_data_ontaph300ecommunications_cloud_native_core_network_repository_functioncommunications_cloud_native_core_unified_data_repositoryh300e_firmwaremacoswatchossolidfire_\&_hci_management_nodeh700eipadosmac_os_xhci_compute_nodeh500eh700s_firmwaresmi-s_providerfedoracommunications_cloud_native_core_network_slice_selection_functionh410s_firmwaresnapmanagerlibxml2h300s_firmwaremanageability_software_development_kitsnapdriveiphone_osh300sn/a
CWE ID-CWE-416
Use After Free
CVE-2022-23233
Matching Score-8
Assigner-NetApp, Inc.
ShareView Details
Matching Score-8
Assigner-NetApp, Inc.
CVSS Score-7.5||HIGH
EPSS-0.92% / 55.79%
||
7 Day CHG+0.02%
Published-04 Mar, 2022 | 17:22
Updated-03 Aug, 2024 | 03:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.6.0 are susceptible to a vulnerability which when successfully exploited could lead to Denial of Service (DoS) of the Local Distribution Router (LDR) service.

Action-Not Available
Vendor-n/aNetApp, Inc.
Product-storagegridStorageGRID (formerly StorageGRID Webscale)
CVE-2019-19050
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-5.08% / 91.30%
||
7 Day CHG~0.00%
Published-18 Nov, 2019 | 05:23
Updated-05 Aug, 2024 | 02:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A memory leak in the crypto_reportstat() function in crypto/crypto_user_stat.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering crypto_reportstat_alg() failures, aka CID-c03b04dcdba1.

Action-Not Available
Vendor-n/aFedora ProjectCanonical Ltd.Broadcom Inc.NetApp, Inc.Linux Kernel Organization, Inc
Product-ubuntu_linuxfas8700_firmwarehci_storage_nodeactive_iq_unified_managerfas8300aff_a400_firmwareh610s_firmwarehci_compute_nodeaff_a700ssolidfiresteelstore_cloud_integrated_storageh610slinux_kernelhci_management_nodeaff_a700s_firmwarefedorae-series_santricity_os_controlleraff_a400fabric_operating_systemfas8700fas8300_firmwaredata_availability_servicesn/a
CWE ID-CWE-401
Missing Release of Memory after Effective Lifetime
CVE-2019-17069
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-2.25% / 80.75%
||
7 Day CHG~0.00%
Published-01 Oct, 2019 | 00:00
Updated-05 Aug, 2024 | 01:33
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

PuTTY before 0.73 might allow remote SSH-1 servers to cause a denial of service by accessing freed memory locations via an SSH1_MSG_DISCONNECT message.

Action-Not Available
Vendor-puttyn/aNetApp, Inc.openSUSE
Product-oncommand_unified_manager_core_packageputtyleapn/a
CWE ID-CWE-416
Use After Free
CVE-2024-38477
Matching Score-8
Assigner-Apache Software Foundation
ShareView Details
Matching Score-8
Assigner-Apache Software Foundation
CVSS Score-7.5||HIGH
EPSS-3.15% / 86.38%
||
7 Day CHG~0.00%
Published-01 Jul, 2024 | 18:16
Updated-03 Nov, 2025 | 22:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Apache HTTP Server: Crash resulting in Denial of Service in mod_proxy via a malicious request

null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request. Users are recommended to upgrade to version 2.4.60, which fixes this issue.

Action-Not Available
Vendor-NetApp, Inc.The Apache Software Foundation
Product-http_serverclustered_data_ontapApache HTTP Server
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2024-38286
Matching Score-8
Assigner-Apache Software Foundation
ShareView Details
Matching Score-8
Assigner-Apache Software Foundation
CVSS Score-8.6||HIGH
EPSS-1.70% / 74.43%
||
7 Day CHG~0.00%
Published-07 Nov, 2024 | 07:37
Updated-03 Nov, 2025 | 21:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Apache Tomcat: Denial of Service

Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M20, from 10.1.0-M1 through 10.1.24, from 9.0.13 through 9.0.89. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.35 through 8.5.100 and 7.0.92 through 7.0.109. Other EOL versions may also be affected. Users are recommended to upgrade to version 11.0.0-M21, 10.1.25, or 9.0.90, which fixes the issue. Apache Tomcat, under certain configurations on any platform, allows an attacker to cause an OutOfMemoryError by abusing the TLS handshake process.

Action-Not Available
Vendor-NetApp, Inc.The Apache Software Foundation
Product-tomcatontap_toolsApache Tomcattomcat
CWE ID-CWE-770
Allocation of Resources Without Limits or Throttling
CVE-2019-12615
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-3.57% / 87.97%
||
7 Day CHG~0.00%
Published-03 Jun, 2019 | 21:58
Updated-04 Aug, 2024 | 23:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue was discovered in get_vdev_port_node_info in arch/sparc/kernel/mdesc.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup_const of node_info->vdev_port.name, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash).

Action-Not Available
Vendor-n/aNetApp, Inc.Linux Kernel Organization, Inc
Product-h610slinux_kernelcn1610hci_management_nodeactive_iq_unified_managerh610s_firmwarecn1610_firmwareaff_a700s_firmwareaff_a700ssolidfiren/a
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2019-12258
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-23.35% / 97.50%
||
7 Day CHG~0.00%
Published-09 Aug, 2019 | 20:00
Updated-04 Aug, 2024 | 23:17
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection via malformed TCP options.

Action-Not Available
Vendor-windriverbeldenn/aNetApp, Inc.Siemens AGSonicWall Inc.
Product-power_meter_9810_firmwarehirschmann_rsp20ruggedcom_win7025_firmwarehirschmann_ees25sonicoshirschmann_grs1030hirschmann_grs1142ruggedcom_win7018_firmwarehirschmann_rspe32hirschmann_grs1130garrettcom_magnum_dx940ehirschmann_rspe35hirschmann_eesx20hirschmann_rspe37ruggedcom_win7018power_meter_9410_firmwarehirschmann_grs1042siprotec_5_firmwareruggedcom_win7000ruggedcom_win7200hirschmann_rsp35garrettcom_magnum_dx940e_firmwaree-series_santricity_os_controllervxworkshirschmann_msp40hirschmann_octopus_os3hirschmann_rsp30hirschmann_dragon_mach4000hirschmann_dragon_mach4500hirschmann_msp32hirschmann_rsp25hirschmann_rail_switch_power_smarthirschmann_eesx30hirschmann_grs1020hirschmann_rail_switch_power_litehirschmann_eagle20hirschmann_eagle30hirschmann_hiosruggedcom_win7025hirschmann_rspe30hirschmann_eagle_oneruggedcom_win7200_firmwaresiprotec_5hirschmann_ees20hirschmann_red25power_meter_9410power_meter_9810ruggedcom_win7000_firmwarehirschmann_msp30hirschmann_grs1120n/a
CWE ID-CWE-384
Session Fixation
CVE-2024-28757
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-2.01% / 78.44%
||
7 Day CHG~0.00%
Published-10 Mar, 2024 | 00:00
Updated-04 Nov, 2025 | 22:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).

Action-Not Available
Vendor-libexpat_projectn/aFedora ProjectNetApp, Inc.
Product-h610sh610s_firmwareh700slibexpath610c_firmwareh410s_firmwareh300sh410c_firmwareh500sh410sh700s_firmwareh610contap_toolsh410ch500s_firmwarefedorah300s_firmwareoncommand_workflow_automationwindows_host_utilitiesontapactive_iq_unified_managern/a
CWE ID-CWE-776
Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')
CVE-2024-27316
Matching Score-8
Assigner-Apache Software Foundation
ShareView Details
Matching Score-8
Assigner-Apache Software Foundation
CVSS Score-7.5||HIGH
EPSS-91.33% / 99.80%
||
7 Day CHG~0.00%
Published-04 Apr, 2024 | 19:21
Updated-04 Nov, 2025 | 22:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Apache HTTP Server: HTTP/2 DoS by memory exhaustion on endless continuation frames

HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413 response. If a client does not stop sending headers, this leads to memory exhaustion.

Action-Not Available
Vendor-Fedora ProjectNetApp, Inc.The Apache Software Foundation
Product-fedoraontaphttp_serverApache HTTP Serverhttp_server
CWE ID-CWE-770
Allocation of Resources Without Limits or Throttling
CVE-2022-2048
Matching Score-8
Assigner-Eclipse Foundation
ShareView Details
Matching Score-8
Assigner-Eclipse Foundation
CVSS Score-7.5||HIGH
EPSS-1.82% / 76.09%
||
7 Day CHG~0.00%
Published-07 Jul, 2022 | 20:35
Updated-03 Aug, 2024 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no enough resources left to process good requests.

Action-Not Available
Vendor-NetApp, Inc.Eclipse Foundation AISBLJenkinsDebian GNU/Linux
Product-debian_linuxmanagement_services_for_element_software_and_netapp_hcielement_plug-in_for_vcenter_serversolidfire_\&_hci_storage_nodehci_compute_nodejenkinsjettysnapcenterEclipse Jetty
CWE ID-CWE-664
Improper Control of a Resource Through its Lifetime
CWE ID-CWE-410
Insufficient Resource Pool
CVE-2024-25111
Matching Score-8
Assigner-GitHub, Inc.
ShareView Details
Matching Score-8
Assigner-GitHub, Inc.
CVSS Score-8.6||HIGH
EPSS-65.25% / 99.16%
||
7 Day CHG~0.00%
Published-06 Mar, 2024 | 18:14
Updated-03 Nov, 2025 | 21:16
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
SQUID-2024:1 Denial of Service in HTTP Chunked Decoding

Squid is a web proxy cache. Starting in version 3.5.27 and prior to version 6.8, Squid may be vulnerable to a Denial of Service attack against HTTP Chunked decoder due to an uncontrolled recursion bug. This problem allows a remote attacker to cause Denial of Service when sending a crafted, chunked, encoded HTTP Message. This bug is fixed in Squid version 6.8. In addition, patches addressing this problem for the stable releases can be found in Squid's patch archives. There is no workaround for this issue.

Action-Not Available
Vendor-Fedora ProjectNetApp, Inc.Squid Cache
Product-fedorasquidbluexpsquidfedorasquidbluexp
CWE ID-CWE-674
Uncontrolled Recursion
CVE-2022-25647
Matching Score-8
Assigner-Snyk
ShareView Details
Matching Score-8
Assigner-Snyk
CVSS Score-7.7||HIGH
EPSS-11.58% / 95.51%
||
7 Day CHG~0.00%
Published-01 May, 2022 | 15:30
Updated-27 May, 2026 | 14:03
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Deserialization of Untrusted Data

The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to DoS attacks.

Action-Not Available
Vendor-n/aOracle CorporationGoogle LLCDebian GNU/LinuxNetApp, Inc.
Product-financial_services_crime_and_compliance_management_studiogsongraalvmretail_order_brokerdebian_linuxactive_iq_unified_managercom.google.code.gson:gson
CWE ID-CWE-502
Deserialization of Untrusted Data
CVE-2022-1678
Matching Score-8
Assigner-OpenAnolis
ShareView Details
Matching Score-8
Assigner-OpenAnolis
CVSS Score-5.9||MEDIUM
EPSS-2.91% / 85.31%
||
7 Day CHG~0.00%
Published-25 May, 2022 | 14:49
Updated-03 Aug, 2024 | 00:10
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memory/netns leak, which can be used by remote clients.

Action-Not Available
Vendor-n/aNetApp, Inc.Linux Kernel Organization, Inc
Product-h300ebootstrap_oscloud_volumes_ontap_mediatorh500sh300s_firmwareh410c_firmwareactive_iq_unified_managerh410sh300shci_compute_nodestoragegridelement_softwaresolidfireh300e_firmwarelinux_kernelh500ehci_management_nodeh410s_firmwaree-series_santricity_os_controllerh500s_firmwareh500e_firmwareh700s_firmwareh700eh410ch700e_firmwareh700skernel
CWE ID-CWE-911
Improper Update of Reference Count
CVE-2024-22019
Matching Score-8
Assigner-HackerOne
ShareView Details
Matching Score-8
Assigner-HackerOne
CVSS Score-7.5||HIGH
EPSS-3.17% / 86.45%
||
7 Day CHG~0.00%
Published-20 Feb, 2024 | 01:31
Updated-04 Nov, 2025 | 17:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A vulnerability in Node.js HTTP servers allows an attacker to send a specially crafted HTTP request with chunked encoding, leading to resource exhaustion and denial of service (DoS). The server reads an unbounded number of bytes from a single connection, exploiting the lack of limitations on chunk extension bytes. The issue can cause CPU and network bandwidth exhaustion, bypassing standard safeguards like timeouts and body size limits.

Action-Not Available
Vendor-NetApp, Inc.Node.js (OpenJS Foundation)
Product-astra_control_centernode.jsNodenode.js
CWE ID-CWE-404
Improper Resource Shutdown or Release
CVE-2022-30614
Matching Score-8
Assigner-IBM Corporation
ShareView Details
Matching Score-8
Assigner-IBM Corporation
CVSS Score-6.5||MEDIUM
EPSS-1.37% / 68.63%
||
7 Day CHG+0.05%
Published-01 Sep, 2022 | 19:00
Updated-17 Sep, 2024 | 00:57
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to a denial of service via email flooding caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume all available CPU resources. IBM X-Force ID: 227591.

Action-Not Available
Vendor-IBM CorporationNetApp, Inc.
Product-cognos_analyticsoncommand_insightCognos Analytics
CVE-2019-0222
Matching Score-8
Assigner-Apache Software Foundation
ShareView Details
Matching Score-8
Assigner-Apache Software Foundation
CVSS Score-7.5||HIGH
EPSS-12.36% / 95.70%
||
7 Day CHG~0.00%
Published-28 Mar, 2019 | 21:16
Updated-04 Aug, 2024 | 17:44
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In Apache ActiveMQ 5.0.0 - 5.15.8, unmarshalling corrupt MQTT frame can lead to broker Out of Memory exception making it unresponsive.

Action-Not Available
Vendor-The Apache Software FoundationNetApp, Inc.Debian GNU/LinuxOracle Corporation
Product-communications_diameter_signaling_routerdebian_linuxenterprise_repositoryidentity_manager_connectorgoldengate_stream_analyticsactivemqe-series_santricity_web_servicesenterprise_manager_base_platformApache ActiveMQ
CVE-2024-0567
Matching Score-8
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-8
Assigner-Red Hat, Inc.
CVSS Score-7.5||HIGH
EPSS-1.41% / 69.35%
||
7 Day CHG~0.00%
Published-16 Jan, 2024 | 14:01
Updated-20 Nov, 2025 | 18:09
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Gnutls: rejects certificate chain with distributed trust

A vulnerability was found in GnuTLS, where a cockpit (which uses gnuTLS) rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate-ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of service attack.

Action-Not Available
Vendor-Debian GNU/LinuxRed Hat, Inc.GNUFedora ProjectNetApp, Inc.
Product-gnutlsdebian_linuxactive_iq_unified_managerfedoraRed Hat Enterprise Linux 9RHOL-5.8-RHEL-9RHODF-4.15-RHEL-9Red Hat Enterprise Linux 7Red Hat OpenShift Container Platform 3.11Red Hat Enterprise Linux 6Red Hat Enterprise Linux 9.2 Extended Update SupportRed Hat Enterprise Linux 8
CWE ID-CWE-347
Improper Verification of Cryptographic Signature
CVE-2020-7469
Matching Score-8
Assigner-FreeBSD
ShareView Details
Matching Score-8
Assigner-FreeBSD
CVSS Score-7.5||HIGH
EPSS-1.22% / 65.04%
||
7 Day CHG~0.00%
Published-04 Jun, 2021 | 11:55
Updated-04 Aug, 2024 | 09:33
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In FreeBSD 12.2-STABLE before r367402, 11.4-STABLE before r368202, 12.2-RELEASE before p1, 12.1-RELEASE before p11 and 11.4-RELEASE before p5 the handler for a routing option caches a pointer into the packet buffer holding the ICMPv6 message. However, when processing subsequent options the packet buffer may be freed, rendering the cached pointer invalid. The network stack may later dereference the pointer, potentially triggering a use-after-free.

Action-Not Available
Vendor-n/aFreeBSD FoundationNetApp, Inc.
Product-freebsdclustered_data_ontapFreeBSD
CWE ID-CWE-416
Use After Free
CVE-2018-7185
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-9.24% / 94.74%
||
7 Day CHG~0.00%
Published-06 Mar, 2018 | 20:00
Updated-14 Jan, 2025 | 19:29
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The protocol engine in ntp 4.2.6 before 4.2.8p11 allows a remote attackers to cause a denial of service (disruption) by continually sending a packet with a zero-origin timestamp and source IP address of the "other side" of an interleaved association causing the victim ntpd to reset its association.

Action-Not Available
Vendor-ntpn/aCanonical Ltd.Synology, Inc.Hewlett Packard Enterprise (HPE)NetApp, Inc.Oracle Corporation
Product-fujitsu_m12-2vs960hd_firmwarefujitsu_m12-2_firmwarefujitsu_m10-4fujitsu_m10-1_firmwarediskstation_managerfujitsu_m12-2subuntu_linuxntpfujitsu_m10-1fujitsu_m10-4_firmwarefujitsu_m10-4svs960hdhpux-ntpfujitsu_m12-1virtual_diskstation_managerfujitsu_m12-2s_firmwarefujitsu_m12-1_firmwarefujitsu_m10-4s_firmwaresolidfirerouter_managerskynashcin/a
CVE-2022-0667
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
ShareView Details
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
CVSS Score-7.5||HIGH
EPSS-1.29% / 66.61%
||
7 Day CHG~0.00%
Published-22 Mar, 2022 | 11:15
Updated-16 Sep, 2024 | 22:20
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Assertion failure on delayed DS lookup

When the vulnerability is triggered the BIND process will exit. BIND 9.18.0

Action-Not Available
Vendor-NetApp, Inc.Internet Systems Consortium, Inc.
Product-h300eh500sh300s_firmwareh410c_firmwareh410sh300sh300e_firmwareh500eh410s_firmwareh700s_firmwareh500s_firmwareh500e_firmwareh700ebindh410ch700e_firmwareh700sBIND
CWE ID-CWE-617
Reachable Assertion
CVE-2023-6516
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
ShareView Details
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
CVSS Score-7.5||HIGH
EPSS-1.10% / 61.57%
||
7 Day CHG~0.00%
Published-13 Feb, 2024 | 14:05
Updated-13 Feb, 2025 | 17:26
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Specific recursive query patterns may lead to an out-of-memory condition

To keep its cache database efficient, `named` running as a recursive resolver occasionally attempts to clean up the database. It uses several methods, including some that are asynchronous: a small chunk of memory pointing to the cache element that can be cleaned up is first allocated and then queued for later processing. It was discovered that if the resolver is continuously processing query patterns triggering this type of cache-database maintenance, `named` may not be able to handle the cleanup events in a timely manner. This in turn enables the list of queued cleanup events to grow infinitely large over time, allowing the configured `max-cache-size` limit to be significantly exceeded. This issue affects BIND 9 versions 9.16.0 through 9.16.45 and 9.16.8-S1 through 9.16.45-S1.

Action-Not Available
Vendor-NetApp, Inc.Internet Systems Consortium, Inc.
Product-bindactive_iq_unified_managerBIND 9bind
CWE ID-CWE-789
Memory Allocation with Excessive Size Value
CWE ID-CWE-770
Allocation of Resources Without Limits or Throttling
CVE-2023-5679
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
ShareView Details
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
CVSS Score-7.5||HIGH
EPSS-1.23% / 65.32%
||
7 Day CHG~0.00%
Published-13 Feb, 2024 | 14:05
Updated-29 Mar, 2025 | 00:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Enabling both DNS64 and serve-stale may cause an assertion failure during recursive resolution

A bad interaction between DNS64 and serve-stale may cause `named` to crash with an assertion failure during recursive resolution, when both of these features are enabled. This issue affects BIND 9 versions 9.16.12 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.12-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.

Action-Not Available
Vendor-Internet Systems Consortium, Inc.NetApp, Inc.Fedora Project
Product-active_iq_unified_managerbindfedoraBIND 9
CWE ID-CWE-617
Reachable Assertion
CVE-2023-5517
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
ShareView Details
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
CVSS Score-7.5||HIGH
EPSS-1.23% / 65.32%
||
7 Day CHG~0.00%
Published-13 Feb, 2024 | 14:04
Updated-13 Feb, 2025 | 17:25
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Querying RFC 1918 reverse zones may cause an assertion failure when "nxdomain-redirect" is enabled

A flaw in query-handling code can cause `named` to exit prematurely with an assertion failure when: - `nxdomain-redirect <domain>;` is configured, and - the resolver receives a PTR query for an RFC 1918 address that would normally result in an authoritative NXDOMAIN response. This issue affects BIND 9 versions 9.12.0 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.16.8-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.

Action-Not Available
Vendor-Fedora ProjectNetApp, Inc.Internet Systems Consortium, Inc.
Product-bindactive_iq_unified_managerfedoraBIND 9bind_9
CWE ID-CWE-617
Reachable Assertion
CVE-2018-5740
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
ShareView Details
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
CVSS Score-7.5||HIGH
EPSS-59.35% / 99.01%
||
7 Day CHG~0.00%
Published-16 Jan, 2019 | 20:00
Updated-16 Sep, 2024 | 17:58
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
A flaw in the "deny-answer-aliases" feature can cause an assertion failure in named

"deny-answer-aliases" is a little-used feature intended to help recursive server operators protect end users against DNS rebinding attacks, a potential method of circumventing the security model used by client browsers. However, a defect in this feature makes it easy, when the feature is in use, to experience an assertion failure in name.c. Affects BIND 9.7.0->9.8.8, 9.9.0->9.9.13, 9.10.0->9.10.8, 9.11.0->9.11.4, 9.12.0->9.12.2, 9.13.0->9.13.2.

Action-Not Available
Vendor-Canonical Ltd.Debian GNU/LinuxopenSUSEHP Inc.Internet Systems Consortium, Inc.NetApp, Inc.Red Hat, Inc.
Product-enterprise_linux_serverubuntu_linuxdebian_linuxenterprise_linux_server_eusenterprise_linux_server_ausenterprise_linux_workstationdata_ontap_edgehp-uxbindenterprise_linux_desktopleapBIND 9
CWE ID-CWE-617
Reachable Assertion
CVE-2022-0778
Matching Score-8
Assigner-OpenSSL Software Foundation
ShareView Details
Matching Score-8
Assigner-OpenSSL Software Foundation
CVSS Score-7.5||HIGH
EPSS-70.56% / 99.31%
||
7 Day CHG~0.00%
Published-15 Mar, 2022 | 17:05
Updated-22 May, 2026 | 13:28
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Infinite loop in BN_mod_sqrt() reachable when parsing certificates

The BN_mod_sqrt() function, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters. Thus vulnerable situations include: - TLS clients consuming server certificates - TLS servers consuming client certificates - Hosting providers taking certificates or private keys from customers - Certificate authorities parsing certification requests from subscribers - Anything else which parses ASN.1 elliptic curve parameters Also any other applications that use the BN_mod_sqrt() where the attacker can control the parameter values are vulnerable to this DoS issue. In the OpenSSL 1.0.2 version the public key is not parsed during initial parsing of the certificate which makes it slightly harder to trigger the infinite loop. However any operation which requires the public key from the certificate will trigger the infinite loop. In particular the attacker can use a self-signed certificate to trigger the loop during verification of the certificate signature. This issue affects OpenSSL versions 1.0.2, 1.1.1 and 3.0. It was addressed in the releases of 1.1.1n and 3.0.2 on the 15th March 2022. Fixed in OpenSSL 3.0.2 (Affected 3.0.0,3.0.1). Fixed in OpenSSL 1.1.1n (Affected 1.1.1-1.1.1m). Fixed in OpenSSL 1.0.2zd (Affected 1.0.2-1.0.2zc).

Action-Not Available
Vendor-NetApp, Inc.Tenable, Inc.Siemens AGNode.js (OpenJS Foundation)OpenSSLMariaDB FoundationDebian GNU/LinuxFedora Project
Product-debian_linuxsantricity_smi-s_providernode.jsopenssla250mariadb500fclustered_data_ontap500f_firmwarea250_firmwarenessusclustered_data_ontap_antivirus_connectorstoragegridfedoracloud_volumes_ontap_mediatorOpenSSLSIMATIC MV550 HSCALANCE W786-2IA RJ45SIMATIC S7-1200 CPU 1214C AC/DC/RlySCALANCE XR326-2C PoE WG (without UL)SIPLUS S7-1200 CP 1243-1SIMATIC CP 1242-7 V2SCALANCE MUM856-1 (RoW)SIMATIC S7-1500 CPU 1513R-1 PNSCALANCE XF204-2BASCALANCE X307-3SIMATIC RF188CSCALANCE M876-4 (NAM)SIMATIC S7-1200 CPU 1211C DC/DC/DCSCALANCE W786-1 RJ45SIMATIC S7-1200 CPU 1211C DC/DC/RlySCALANCE M876-4 (EU)SCALANCE LPE9403SIMATIC CP 1628SIMATIC S7-1500 CPU 1517TF-3 PN/DPSIMATIC S7-1200 CPU 1212C AC/DC/RlySIPLUS S7-1200 CPU 1215 DC/DC/DCSCALANCE X306-1LD FESCALANCE MUM853-1 (EU)SIPLUS S7-1200 CPU 1212 AC/DC/RLYSINAMICS Startdrive V15.1SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PNSIMATIC CP 443-1 OPC UASCALANCE S615 LAN-RouterSCALANCE XB213-3 (SC, E/IP)SIPLUS ET 200SP CPU 1510SP-1 PNSCALANCE XR526-8C, 24V (L3 int.)SCALANCE XB208 (PN)SIMATIC S7-1500 CPU 1512C-1 PNSIRIUS Soft Starter ES V15.1 (TIA Portal)Security Configuration Tool (SCT)SIPLUS NET CP 1242-7 V2SIPLUS ET 200SP CPU 1512SP F-1 PNSCALANCE W748-1 M12SIPLUS S7-1500 CPU 1511-1 PN T1 RAILSCALANCE X308-2LHBFCClientSCALANCE XR528-6M (2HR2)SIMATIC HMI Unified Comfort Panels familySCALANCE XR326-2C PoE WGSIMATIC S7-1500 CPU 1511C-1 PNSIMATIC Cloud Connect 7 CC716SIMATIC RF166CSIMATIC WinCC V17SIPLUS NET SCALANCE XC216-4CSIMATIC S7-1200 CPU 1215FC DC/DC/DCSIMATIC Logon V1.6SIPLUS S7-1500 CPU 1518F-4 PN/DPSCALANCE M816-1 ADSL-RouterSCALANCE XR324-4M PoE (24V, ports on front)RUGGEDCOM ROX RX1510SIMATIC PCS 7 TeleControlSCALANCE WUM763-1SCALANCE XC216EECSIMATIC RF615RSCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)SCALANCE XR552-12M (2HR2, L3 int.)SCALANCE XR324-4M PoE TS (24V, ports on front)SCALANCE X320-1 FESCALANCE X320-1-2LD FESIMATIC S7-1200 CPU 1215C DC/DC/DCSCALANCE M804PBRUGGEDCOM ROX MX5000RUGGEDCOM ROX RX1524SCALANCE XF204-2SCALANCE X307-2 EEC (230V, coated)SCALANCE XR324WG (24 X FE, DC 24V)SIMATIC S7-1200 CPU 1212FC DC/DC/DCSIMATIC ET 200SP CPU 1510SP F-1 PNSINAMICS DCC V15.1SCALANCE W1788-2IA M12SCALANCE XR324-4M EEC (2x 24V, ports on front)SIPLUS S7-1500 CPU 1518-4 PN/DP MFPSINEMA Remote Connect ServerSIPLUS NET SCALANCE XC206-2SIPLUS S7-1200 CPU 1214 DC/DC/RLYSIPLUS S7-1200 CPU 1212 DC/DC/RLYSIPLUS S7-1500 CPU 1515F-2 PNSINAMICS DCC V16SCALANCE WAM766-1 EEC (US)SCALANCE X202-2P IRTSCALANCE XR324-12M TS (24V)SCALANCE XR524-8C, 2x230V (L3 int.)SIPLUS S7-1200 CPU 1214FC DC/DC/RLYSIPLUS ET 200SP CPU 1510SP F-1 PN RAILTeleControl Server Basic V3SCALANCE W1748-1 M12SCALANCE XC206-2SFP G (EIP DEF.)SCALANCE XR526-8C, 1x230V (L3 int.)SCALANCE XC216-4C G (EIP Def.)SIMATIC WinCC Unified (TIA Portal)SCALANCE XM408-8CSIMATIC CP 1243-8 IRCSCALANCE W1788-2 EEC M12SCALANCE X212-2SIPLUS S7-1500 CPU 1515F-2 PN T2 RAILSIMATIC S7-PLCSIM AdvancedSCALANCE WAM766-1 EECSCALANCE W788-2 M12SIPLUS S7-1200 CPU 1214C DC/DC/DC RAILSCALANCE X206-1LDSIRIUS Soft Starter ES V17 (TIA Portal)SIMATIC S7-1200 CPU 1214C DC/DC/RlySCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)SCALANCE XR324-4M EEC (2x 24V, ports on rear)SIPLUS S7-1500 CPU 1517H-3 PNSIMATIC RF610RSCALANCE X202-2P IRT PROSIMATIC MV550 SSIPLUS S7-1200 CPU 1212C DC/DC/DC RAILSCALANCE X408-2SIMATIC S7-1200 CPU 1211C AC/DC/RlySCALANCE XP208 (Ethernet/IP)SIMATIC PDMSIPLUS S7-1500 CPU 1516-3 PN/DP RAILSCALANCE XC224-4C GSIMATIC RF185CSCALANCE XR324-12M (24V, ports on front)SIMATIC CP 1243-7 LTE USRUGGEDCOM ROX RX1400SIMATIC S7-1500 CPU 1511TF-1 PNRUGGEDCOM RM1224 LTE(4G) NAMSCALANCE XR324-4M PoE (24V, ports on rear)SCALANCE X308-2M TSSIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PNSCALANCE W1750D (ROW)SIPLUS S7-1200 CP 1243-1 RAILSCALANCE X302-7 EEC (230V)SCALANCE X302-7 EEC (2x 230V)SCALANCE X308-2M PoESIMATIC S7-1500 CPU 1517-3 PN/DPSIMATIC CP 1243-1SIPLUS ET 200SP CPU 1510SP-1 PN RAILSCALANCE M826-2 SHDSL-RouterSCALANCE XR324-12M (230V, ports on rear)SIMATIC CP 1626SCALANCE W786-2 RJ45SIPLUS S7-1500 CPU 1516-3 PN/DP TX RAILSCALANCE XR324-4M PoE (230V, ports on front)SCALANCE XC206-2SFP GSCALANCE XC216-3G PoE (54 V DC)SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODKSCALANCE W1788-1 M12SCALANCE XM408-4C (L3 int.)RUGGEDCOM ROX RX5000SINAUT Software ST7scSIRIUS Soft Starter ES V16 (TIA Portal)SCALANCE XC206-2 (SC)SCALANCE XR528-6M (L3 int.)SIPLUS S7-1200 CPU 1214FC DC/DC/DCSIPLUS S7-1200 CPU 1215 AC/DC/RLYSCALANCE X307-2 EEC (24V)SINEC INSSIPLUS ET 200SP CP 1543SP-1 ISEC TX RAILSIPLUS NET SCALANCE XC206-2SFPSIPLUS NET CP 443-1 AdvancedSIPLUS S7-1200 CPU 1215C AC/DC/RLYSIMATIC S7-1500 CPU 1515T-2 PNSCALANCE XM416-4C (L3 int.)SCALANCE XP216POE EECSIMOCODE ES V17SCALANCE XB213-3 (SC, PN)SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODKSCALANCE X304-2FESCALANCE XC216-4CSCALANCE XP216SIPLUS NET CP 343-1 AdvancedSIPLUS S7-1200 CPU 1214 AC/DC/RLYSIMATIC S7-1500 CPU 1515F-2 PNSIPLUS ET 200SP CP 1543SP-1 ISECSCALANCE X307-2 EEC (24V, coated)SIMATIC PCS 7 V9.0SCALANCE X302-7 EEC (2x 24V)SCALANCE W722-1 RJ45SCALANCE XB205-3LD (SC, PN)SCALANCE X308-2SCALANCE XR552-12M (2HR2)SCALANCE W788-2 M12 EECSCALANCE XR324-4M EEC (24V, ports on rear)SCALANCE XB213-3 (ST, PN)SCALANCE WAM766-1 (US)SCALANCE WUM766-1 (USA)SIMATIC S7-1500 CPU 1516T-3 PN/DPSCALANCE XR524-8C, 1x230VSCALANCE X208PROSIMATIC RF186CSCALANCE X302-7 EEC (24V, coated)SIPLUS S7-1500 CPU 1518-4 PN/DPSCALANCE XP208PoE EECSCALANCE XR528-6M (2HR2, L3 int.)SIMATIC STEP 7 V15.1SIMATIC S7-1200 CPU 1215FC DC/DC/RlySIPLUS S7-1500 CPU 1516F-3 PN/DPSIMATIC STEP 7 V5SCALANCE XC206-2SFP EECSCALANCE X204-2LD TSSIPLUS ET 200SP CPU 1512SP-1 PN RAILSCALANCE XP208SCALANCE XB216 (PN)SIMATIC NET PC Software V15SCALANCE X310FESIPLUS S7-1200 CPU 1212C AC/DC/RLYSCALANCE XF204IRTSCALANCE XR324-12M (24V, ports on rear)SIPLUS ET 200SP CPU 1510SP F-1 PNSCALANCE W778-1 M12 EECSCALANCE XB205-3LD (SC, E/IP)RUGGEDCOM ROX RX1511SCALANCE XR328-4C WG (28xGE, DC 24V)SCALANCE XC216-4C G EECSIPLUS ET 200SP CPU 1512SP-1 PNSCALANCE SC646-2CSCALANCE X216SIMATIC S7-1500 CPU 1518F-4 PN/DP MFPSCALANCE XB205-3 (ST, E/IP)SIMATIC WinCC V16RUGGEDCOM ROX RX1501SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)SIPLUS S7-1500 CPU 1515R-2 PN TX RAILSCALANCE XB213-3LD (SC, PN)SCALANCE XC224-4C G (EIP Def.)SIMATIC WinCC V7.4SCALANCE X302-7 EEC (2x 230V, coated)SCALANCE XR524-8C, 24VSCALANCE XC206-2G PoE EEC (54 V DC)SIMATIC NET PC Software V14SCALANCE X308-2 RD (inkl. SIPLUS variants)TIA AdministratorSIMATIC S7-1200 CPU 1214FC DC/DC/RlySCALANCE M876-4SCALANCE XC208G PoE (54 V DC)SIMATIC S7-1500 CPU 1515R-2 PNSIMATIC S7-1500 CPU 1518-4 PN/DP MFPSCALANCE X200-4P IRTSIMATIC RF188CISIMATIC RF685RSCALANCE X308-2LDSCALANCE W774-1 RJ45 (USA)SIMATIC S7-1500 CPU 1518HF-4 PNSCALANCE X212-2LDSINAUT ST7CCSCALANCE W761-1 RJ45SCALANCE XR324-12M (230V, ports on front)SIPLUS S7-1200 CPU 1214C DC/DC/RLYSIPLUS NET CP 1543-1SCALANCE SC622-2CSIPLUS ET 200SP CPU 1512SP F-1 PN RAILSIMATIC CP 1543-1SIMATIC MV540 SSIPLUS NET SCALANCE XC208SIMATIC RF650RSCALANCE WUM766-1SCALANCE X302-7 EEC (2x 24V, coated)SCALANCE XR524-8C, 24V (L3 int.)SCALANCE XP208EECSCALANCE X308-2LH+SCALANCE XR526-8C, 1x230VSCALANCE XR328-4C WG (28xGE, AC 230V)SCALANCE W1750D (USA)SCALANCE XF202-2P IRTSIPLUS S7-1500 CPU 1511F-1 PNSCALANCE W774-1 RJ45SIMATIC S7-1200 CPU 1217C DC/DC/DCSIPLUS S7-1200 CPU 1214C AC/DC/RLYIndustrial Edge - SIMATIC S7 Connector AppSCALANCE WAM766-1SCALANCE XC216-3G PoETIA Portal Cloud V17SIMATIC S7-1200 CPU 1212FC DC/DC/RlySCALANCE XC224-4C G EECSIMATIC S7-1200 CPU 1215C DC/DC/RlySCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)OpenPCS 7 V8.2SCALANCE XB205-3 (ST, PN)SCALANCE X204-2SIMOCODE ES V15.1SCALANCE XC216-4C GSINAMICS Startdrive V16SIMATIC WinCC V15.1SIMATIC MV540 HSINEC NMSSCALANCE W788-2 RJ45SCALANCE XR526-8C, 24VSCALANCE X204-2FMSCALANCE W734-1 RJ45 (USA)SCALANCE XB208 (E/IP)RUGGEDCOM ROX RX1512SCALANCE W788-1 M12SIMATIC MV560 USIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PNSIMATIC STEP 7 V17SCALANCE X204IRT PROSIMATIC S7-1500 CPU 1518-4 PN/DPSCALANCE X302-7 EEC (24V)SCALANCE W721-1 RJ45SCALANCE XR324-4M EEC (24V, ports on front)SCALANCE W1750D (JP)SCALANCE XC208GSCALANCE W1788-2 M12RUGGEDCOM ROX RX1500SCALANCE M874-3SCALANCE W786-2 SFPSCALANCE XR526-8C, 2x230VSIMOTIONSCALANCE XM416-4CSIMATIC STEP 7 V16SCALANCE XC206-2G PoESCALANCE XR528-6MSIMATIC CP 1542SP-1SCALANCE XF206-1SIPLUS NET SCALANCE X202-2P IRTSCALANCE X307-2 EEC (2x 230V, coated)SCALANCE XR526-8C, 2x230V (L3 int.)SCALANCE XC208EECSCALANCE XR328-4C WG (24xFE, 4xGE,DC24V)SCALANCE XC206-2SFPSIPLUS S7-1500 CPU 1513-1 PNSCALANCE XF204-2BA IRTSIPLUS S7-1500 CPU 1513F-1 PNSCALANCE W774-1 M12 EECSIMATIC NET PC Software V16SIMATIC MV560 XOpenPCS 7 V9.0SCALANCE X202-2IRTSIMATIC S7-1500 CPU 1511F-1 PNSCALANCE X201-3P IRTSIPLUS S7-1200 CPU 1214C DC/DC/DCSCALANCE XC208SCALANCE X302-7 EEC (230V, coated)SIPLUS S7-1500 CPU 1515F-2 PN RAILSIMATIC S7-1500 CPU 1516TF-3 PN/DPSIMOTION SCOUT TIA V5.4SCALANCE XR524-8C, 2x230VSCALANCE W748-1 RJ45SIMATIC S7-1200 CPU 1214FC DC/DC/DCIndustrial Edge - OPC UA ConnectorSIMOTION SCOUT TIA V5.3SCALANCE SC642-2CSIMATIC CP 443-1 AdvancedSIMATIC CP 1243-7 LTE EUSCALANCE W788-1 RJ45SIMOCODE ES V16SCALANCE X204-2LDSCALANCE M876-3 (ROK)SIPLUS S7-1500 CPU 1515R-2 PNSIMATIC S7-1500 CPU 1518F-4 PN/DPSIMATIC S7-1500 CPU 1518TF-4 PN/DPSIPLUS TIM 1531 IRCSCALANCE XP216EECSCALANCE X208SCALANCE X307-2 EEC (230V)TIA Portal Cloud V16SIPLUS S7-1200 CPU 1215 DC/DC/RLYSCALANCE SC632-2CSIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PNSIMATIC S7-1500 CPU 1513F-1 PNSCALANCE XP216 (Ethernet/IP)SIPLUS S7-1500 CPU 1518HF-4 PNSIMATIC RF680RSCALANCE X224OpenPCS 7 V9.1SCALANCE M812-1 ADSL-RouterSCALANCE XB205-3 (SC, PN)SIMATIC ET 200SP CPU 1512SP F-1 PNSCALANCE XR328-4C WG (24xFE,4xGE,AC230V)SCALANCE WAM763-1SCALANCE XB213-3LD (SC, E/IP)SIMATIC Drive Controller CPU 1504D TFSIMATIC S7-1500 CPU 1518T-4 PN/DPSCALANCE W738-1 M12SCALANCE M876-3SCALANCE XR324-4M PoE (230V, ports on rear)SCALANCE X310TIM 1531 IRCSCALANCE XR324WG (24 x FE, AC 230V)SCALANCE XC216SIMATIC S7-1500 CPU 1517T-3 PN/DPRUGGEDCOM RM1224 LTE(4G) EUSIMATIC CP 1543SP-1SCALANCE XR552-12MSCALANCE XC206-2 (ST/BFOC)SCALANCE X308-2MSCALANCE M874-2SCALANCE W778-1 M12SCALANCE XB213-3 (ST, E/IP)SIMATIC WinCC V7.5SIMATIC S7-1500 CPU 1515TF-2 PNSCALANCE XC208G EECSIMATIC RF186CISCALANCE XB216 (E/IP)SCALANCE S615 EEC LAN-RouterSIMATIC CP 343-1 AdvancedSIMATIC S7-1500 CPU 1511-1 PNSCALANCE X201-3P IRT PROSIMATIC Drive Controller CPU 1507D TFSIPLUS S7-1200 CPU 1212C DC/DC/DCSCALANCE XF201-3P IRTSIPLUS S7-1500 CPU 1511-1 PN TX RAILRUGGEDCOM ROX MX5000RESCALANCE XM408-4CRUGGEDCOM ROX RX1536SCALANCE SC636-2CSIRIUS Safety ES V17 (TIA Portal)SIMATIC PCS 7 V9.1SCALANCE XF204 DNASIMATIC S7-1500 CPU 1516F-3 PN/DPSIMATIC RF360RSCALANCE X206-1SIMATIC PCS neo (Administration Console)SIMATIC Process Historian OPC UA ServerSCALANCE XC206-2SFP G EECSINAMICS Startdrive V17SCALANCE XF204SCALANCE XR328-4C WG (24XFE, 4XGE, 24V)SIPLUS S7-1500 CPU 1516-3 PN/DPSIMATIC S7-1200 CPU 1212C DC/DC/RlySIMATIC S7-1200 CPU 1215C AC/DC/RlySCALANCE X204-2TSSIMATIC S7-1500 CPU 1517F-3 PN/DPSIMATIC PCS 7 V8.2SIMATIC S7-1200 CPU 1212C DC/DC/DCSIMATIC ET 200SP CPU 1512SP-1 PNRUGGEDCOM CROSSBOW Station Access Controller (SAC)SCALANCE XC208G (EIP def.)SIPLUS S7-1500 CPU 1511-1 PNSCALANCE X307-2 EEC (2x 24V)SIPLUS S7-1200 CPU 1215FC DC/DC/DCSIMATIC S7-1200 CPU 1214C DC/DC/DCSIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)SIMATIC S7-1500 Software Controller V2SCALANCE W778-1 M12 EEC (USA)SCALANCE X204IRTSCALANCE XC206-2G PoE (54 V DC)SIPLUS S7-1500 CPU 1516F-3 PN/DP RAILSCALANCE W734-1 RJ45SIMATIC S7-1500 CPU 1513-1 PNSIMATIC S7-1500 CPU 1517H-3 PNSIMATIC WinCC V7.3SCALANCE XC208G PoESCALANCE X307-3LDSIMATIC S7-1500 CPU 1511T-1 PNSCALANCE MUM856-1 (EU)SCALANCE XC224SCALANCE XM408-8C (L3 int.)SIMATIC NET PC Software V17SIMATIC Cloud Connect 7 CC712SCALANCE X307-2 EEC (2x 230V)SCALANCE XF204-2BA DNASCALANCE XR524-8C, 1x230V (L3 int.)SIMATIC S7-1500 CPU 1516-3 PN/DPSIMATIC CP 1545-1SIMATIC S7-1500 CPU 1515-2 PNSCALANCE X307-2 EEC (2x 24V, coated)SIPLUS S7-1200 CPU 1215C DC/DC/DCSIMATIC ET 200SP CPU 1510SP-1 PNSCALANCE XF208
CWE ID-CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
CVE-2023-4408
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
ShareView Details
Matching Score-8
Assigner-Internet Systems Consortium (ISC)
CVSS Score-7.5||HIGH
EPSS-1.33% / 67.53%
||
7 Day CHG~0.00%
Published-13 Feb, 2024 | 14:04
Updated-14 Mar, 2025 | 17:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Parsing large DNS messages may cause excessive CPU load

The DNS message parsing code in `named` includes a section whose computational complexity is overly high. It does not cause problems for typical DNS traffic, but crafted queries and responses may cause excessive CPU load on the affected `named` instance by exploiting this flaw. This issue affects both authoritative servers and recursive resolvers. This issue affects BIND 9 versions 9.0.0 through 9.16.45, 9.18.0 through 9.18.21, 9.19.0 through 9.19.19, 9.9.3-S1 through 9.11.37-S1, 9.16.8-S1 through 9.16.45-S1, and 9.18.11-S1 through 9.18.21-S1.

Action-Not Available
Vendor-NetApp, Inc.Fedora ProjectInternet Systems Consortium, Inc.
Product-bindontapfedoraBIND 9
CWE ID-CWE-407
Inefficient Algorithmic Complexity
CVE-2018-25032
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-51.73% / 98.82%
||
7 Day CHG~0.00%
Published-25 Mar, 2022 | 00:00
Updated-21 Aug, 2025 | 20:37
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

Action-Not Available
Vendor-gotozlibazuln/aNetApp, Inc.Fedora ProjectDebian GNU/LinuxSparkle MotionSiemens AGMicrosoft CorporationPython Software FoundationApple Inc.MariaDB Foundation
Product-h410cmacospythonhci_compute_nodeh500s_firmwareh300s_firmwarescalance_sc642-2c_firmwaremac_os_xscalance_sc646-2c_firmwareh700s_firmwaremariadbscalance_sc622-2c_firmwaremanagement_services_for_element_softwarescalance_sc632-2c_firmwarezlibh410sh410s_firmwarenokogiriontap_select_deploy_administration_utilityscalance_sc636-2cfedorawindowsscalance_sc642-2cgotoassisth300sscalance_sc626-2czuluscalance_sc626-2c_firmwarescalance_sc636-2c_firmwareh410c_firmwarescalance_sc646-2cactive_iq_unified_managerscalance_sc622-2ce-series_santricity_os_controllerh700sdebian_linuxscalance_sc632-2ch500soncommand_workflow_automationn/a
CWE ID-CWE-787
Out-of-bounds Write
CVE-2022-0742
Matching Score-8
Assigner-Google LLC
ShareView Details
Matching Score-8
Assigner-Google LLC
CVSS Score-9.1||CRITICAL
EPSS-4.92% / 91.06%
||
7 Day CHG~0.00%
Published-18 Mar, 2022 | 11:20
Updated-21 Apr, 2025 | 13:55
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Memory leak in ICMP6 in Linux Kernel

Memory leak in icmp6 implementation in Linux Kernel 5.13+ allows a remote attacker to DoS a host by making it go out-of-memory via icmp6 packets of type 130 or 131. We recommend upgrading past commit 2d3916f3189172d5c69d33065c3c21119fe539fc.

Action-Not Available
Vendor-Linux Kernel Organization, IncNetApp, Inc.
Product-aff_8300h300eh500sa400_firmwareh300s_firmwareh410c_firmwarefas_8700h410saff_8700h300saff_8300_firmwareh300e_firmwarefas_8700_firmwarelinux_kernela400h500eh410s_firmwareh700s_firmwareh500s_firmwareh500e_firmwarefas_8300_firmwareaff_8700_firmwareh700eh410ch700e_firmwarefas_8300h700sKernel
CWE ID-CWE-275
Not Available
CWE ID-CWE-401
Missing Release of Memory after Effective Lifetime
CVE-2023-32252
Matching Score-8
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-8
Assigner-Red Hat, Inc.
CVSS Score-7.5||HIGH
EPSS-4.06% / 89.42%
||
7 Day CHG~0.00%
Published-24 Jul, 2023 | 15:19
Updated-27 Aug, 2024 | 19:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Session null pointer dereference denial-of-service vulnerability

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_LOGOFF commands. The issue results from the lack of proper validation of a pointer prior to accessing it. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.

Action-Not Available
Vendor-n/aNetApp, Inc.Fedora ProjectLinux Kernel Organization, IncRed Hat, Inc.
Product-linux_kernelh500sh410s_firmwareh700s_firmwareh300s_firmwareh500s_firmwareh410c_firmwareh410sh410ch300sh700sRed Hat Enterprise Linux 9kernelRed Hat Enterprise Linux 6Red Hat Enterprise Linux 8Red Hat Enterprise Linux 7Fedora
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2023-32247
Matching Score-8
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-8
Assigner-Red Hat, Inc.
CVSS Score-7.5||HIGH
EPSS-3.87% / 88.93%
||
7 Day CHG~0.00%
Published-24 Jul, 2023 | 15:19
Updated-27 Aug, 2024 | 19:37
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Session setup memory exhaustion denial-of-service vulnerability

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_SESSION_SETUP commands. The issue results from the lack of control of resource consumption. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.

Action-Not Available
Vendor-n/aNetApp, Inc.Fedora ProjectLinux Kernel Organization, IncRed Hat, Inc.
Product-linux_kernelh500sh410sh300sh700sRed Hat Enterprise Linux 9kernelRed Hat Enterprise Linux 6Red Hat Enterprise Linux 8Red Hat Enterprise Linux 7Fedora
CWE ID-CWE-401
Missing Release of Memory after Effective Lifetime
CVE-2023-32248
Matching Score-8
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-8
Assigner-Red Hat, Inc.
CVSS Score-7.5||HIGH
EPSS-4.06% / 89.42%
||
7 Day CHG~0.00%
Published-24 Jul, 2023 | 15:19
Updated-02 Aug, 2024 | 15:10
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Tree connection null pointer dereference denial-of-service vulnerability

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2_TREE_CONNECT and SMB2_QUERY_INFO commands. The issue results from the lack of proper validation of a pointer prior to accessing it. An attacker can leverage this vulnerability to create a denial-of-service condition on the system.

Action-Not Available
Vendor-n/aNetApp, Inc.Fedora ProjectLinux Kernel Organization, IncRed Hat, Inc.
Product-linux_kernelh500sh410sh410ch300sh700sRed Hat Enterprise Linux 9kernelRed Hat Enterprise Linux 6Red Hat Enterprise Linux 8Red Hat Enterprise Linux 7Fedora
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2023-3107
Matching Score-8
Assigner-FreeBSD
ShareView Details
Matching Score-8
Assigner-FreeBSD
CVSS Score-7.5||HIGH
EPSS-0.54% / 41.42%
||
7 Day CHG~0.00%
Published-01 Aug, 2023 | 22:01
Updated-09 Jul, 2025 | 14:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Remote denial of service in IPv6 fragment reassembly

A set of carefully crafted ipv6 packets can trigger an integer overflow in the calculation of a fragment reassembled packet's payload length field. This allows an attacker to trigger a kernel panic, resulting in a denial of service.

Action-Not Available
Vendor-NetApp, Inc.FreeBSD Foundation
Product-freebsdclustered_data_ontapFreeBSD
CWE ID-CWE-190
Integer Overflow or Wraparound
CVE-2023-2953
Matching Score-8
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-8
Assigner-Red Hat, Inc.
CVSS Score-7.5||HIGH
EPSS-1.95% / 77.74%
||
7 Day CHG~0.00%
Published-30 May, 2023 | 00:00
Updated-10 Jan, 2025 | 22:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

Action-Not Available
Vendor-openldapn/aRed Hat, Inc.Apple Inc.NetApp, Inc.
Product-h300smacosh500s_firmwareh410s_firmwareh700s_firmwareh410sh700sh410c_firmwareontap_toolsactive_iq_unified_managerenterprise_linuxh500sh410ch300s_firmwareclustered_data_ontapopenldapopenldap
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2018-18066
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-4.30% / 89.94%
||
7 Day CHG~0.00%
Published-08 Oct, 2018 | 18:00
Updated-06 May, 2025 | 15:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

snmp_oid_compare in snmplib/snmp_api.c in Net-SNMP before 5.8 has a NULL Pointer Exception bug that can be used by an unauthenticated attacker to remotely cause the instance to crash via a crafted UDP packet, resulting in Denial of Service.

Action-Not Available
Vendor-n/aNet-SNMPNetApp, Inc.
Product-data_ontape-series_santricity_os_controllercloud_backupnet-snmpstoragegrid_webscalehyper_converged_infrastructuresolidfire_element_osn/a
CWE ID-CWE-476
NULL Pointer Dereference
CVE-2023-29552
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-7.5||HIGH
EPSS-65.87% / 99.18%
||
7 Day CHG~0.00%
Published-25 Apr, 2023 | 00:00
Updated-31 Oct, 2025 | 14:39
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Known KEV||Action Due Date - 2023-11-29||Apply mitigations per vendor instructions or disable SLP service or port 427/UDP on all systems running on untrusted networks, including those directly connected to the Internet.

The Service Location Protocol (SLP, RFC 2608) allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor.

Action-Not Available
Vendor-service_location_protocol_projectn/aVMware (Broadcom Inc.)NetApp, Inc.The IETF Administration LLC (IETF LLC)SUSE
Product-service_location_protocolesximanager_serverlinux_enterprise_serversmi-s_providern/aService Location Protocol (SLP)
CVE-2022-1199
Matching Score-8
Assigner-Red Hat, Inc.
ShareView Details
Matching Score-8
Assigner-Red Hat, Inc.
CVSS Score-7.5||HIGH
EPSS-1.55% / 72.07%
||
7 Day CHG+0.06%
Published-29 Aug, 2022 | 00:00
Updated-23 Apr, 2025 | 17:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A flaw was found in the Linux kernel. This flaw allows an attacker to crash the Linux kernel by simulating amateur radio from the user space, resulting in a null-ptr-deref vulnerability and a use-after-free vulnerability.

Action-Not Available
Vendor-n/aLinux Kernel Organization, IncNetApp, Inc.Red Hat, Inc.
Product-linux_kernelh500sh410s_firmwareenterprise_linuxactive_iq_unified_managerh300s_firmwareh500s_firmwareh700s_firmwareh410c_firmwareh410sh410ch300sh700sKernel
CWE ID-CWE-416
Use After Free
CWE ID-CWE-476
NULL Pointer Dereference
  • Previous
  • 1
  • 2
  • 3
  • 4
  • ...
  • 31
  • 32
  • Next
Details not found