ByteOS Network

hci_h615c_firmware

Source -

NVD

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-0725

Assigner-curl

View Details

Assigner-curl

CVSS Score-7.3||HIGH

EPSS-0.44% / 63.31%

7 Day CHG~0.00%

Published-05 Feb, 2025 | 09:18

Updated-27 Jun, 2025 | 19:24

gzip integer overflow

When libcurl is asked to perform automatic gzip decompression of content-encoded HTTP responses with the `CURLOPT_ACCEPT_ENCODING` option, **using zlib 1.2.0.3 or older**, an attacker-controlled integer overflow would make libcurl perform a buffer overflow.

Vendor-zlib NetApp, Inc.CURL

Product-hci_h610s_firmware hci_baseboard_management_controller solidfire_\&_hci_management_node zlib curl solidfire_\&_hci_storage_node libcurl hci_h610c hci_h610s hci_h615c_firmware hci_h610c_firmware hci_h615c curl

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CVE-2024-2961

Assigner-GNU C Library

View Details

Assigner-GNU C Library

CVSS Score-7.3||HIGH

EPSS-92.16% / 99.71%

7 Day CHG~0.00%

Published-17 Apr, 2024 | 17:27

Updated-03 Apr, 2026 | 16:36

The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

Vendor-The GNU C Library Debian GNU/Linux NetApp, Inc.GNU

CWE ID-CWE-787

Out-of-bounds Write