Vulnerabilities for Solidfire element os management node (...) - CXSECURITY.COM

Vulnerabilities for
'Solidfire element os management node'

2019-01-16

CVE-2018-5734

CWE-617

While handling a particular type of malformed packet BIND erroneously selects a SERVFAIL rcode instead of a FORMERR rcode. If the receiving view has the SERVFAIL cache feature enabled, this can trigger an assertion failure in badcache.c when the request doesn't contain all of the expected information. Affects BIND 9.10.5-S1 to 9.10.5-S4, 9.10.6-S1, 9.10.6-S2.

CVE-2016-9778

CWE-388

An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulnerable server could be intentionally stopped by an attacker if it was using a configuration that met the criteria for the vulnerability and if the attacker could cause it to accept a query that possessed the required attributes. Please note: This vulnerability affects the "nxdomain-redirect" feature, which is one of two methods of handling NXDOMAIN redirection, and is only available in certain versions of BIND. Redirection using zones of type "redirect" is not affected by this vulnerability. Affects BIND 9.9.8-S1 -> 9.9.8-S3, 9.9.9-S1 -> 9.9.9-S6, 9.11.0-9.11.0-P1.

2018-07-10

CVE-2018-3693

CWE-noinfo

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis.

>>> Vendor: Netapp 93 Products

Oncommand balance

Oncommand workflow automation

Clustered data ontap

Oncommand system manager

Snap creator framework

Metrocluster tiebreaker

Oncommand insight

Virtual storage console for vmware vsphere

Snapcenter server

Oncommand unified manager for clustered data ontap

Ontap select administration utility

Oncommand unified manager core package

Storagegrid webscale

Service level manager

Hyper converged infrastructure

Solidfire element os

Oncommand unified manager

Santricity smi-s provider

Cn1610 firmware

Data ontap edge

Element software management node

Solidfire element os management node

Element software

Santricity cloud connector

E-series santricity os controller

Ontap select deploy

Steelstore cloud integrated storage

Storage automation store

Ontap select deploy utility

Active iq performance analytics services

Ontap select deploy administration utility

Element software management

Fas/aff baseboard management controller

E-series santricity management plug-ins

E-series santricity web services proxy

Service processor

Aff baseboard management controller

Fas baseboard management controller

Storagegrid webscale nas bridge

Oncommand api services

E-series santricity management

E-series santricity storage manager

E-series santricity web services

Brocade network advisor

Virtual storage console

Hyper converged infrastructure compute node

Clustered data ontap antivirus connector

Hci storage nodes

Data ontap operating in 7-mode

Oncommand unified manger

Baseboard management controller firmware

E-series santricity unified manager

Oncommand cloud manager

Active iq unified manager

Element healthtools

Hci management node

Hci storage node

Element plug-in for vcenter server

Management services for element software and netapp hci

Solidfire \& hci management node

Brocade fabric os

Manageability software development kit

Storage encryption

Santricity unified manager

Ontap system manager

Brocade san navigator

Cloud insights acquisition unit

Cloud secure agent

Cloud volumes ontap mediator

Copyright 2024, cxsecurity.com