H300s firmware

This hub aggregates every CVE we track for H300s firmware, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting H300s firmware.

• CVE-2024-54085Redfish Authentication BypassKEV9.8Mar 11, 2025
• CVE-2025-24928libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untruste...7.8Feb 18, 2025
• CVE-2024-56171libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be ...7.8Feb 18, 2025
• CVE-2025-0665eventfd double close9.8Feb 5, 2025
• CVE-2025-0167netrc and default credential leak3.4Feb 5, 2025
• CVE-2024-40896In libxml2 2.11 before 2.11.9, 2.12 before 2.12.9, and 2.13 before 2.13.3, the SAX parser can produce events for external entities even if custom SAX handlers try to override entity content (by set...9.1Dec 23, 2024
• CVE-2024-11053netrc and redirect credential leak3.4Dec 11, 2024
• CVE-2024-50602An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser.5.9Oct 27, 2024
• CVE-2024-8096OCSP stapling bypass with GnuTLS6.5Sep 11, 2024
• CVE-2024-6119Possible denial of service in X.509 name checks7.5Sep 3, 2024
• CVE-2024-36958NFSD: Fix nfsd4_encode_fattr4() crasher5.5May 30, 2024
• CVE-2024-33602nscd: netgroup cache assumes NSS callback uses in-buffer strings7.4May 6, 2024
• CVE-2024-33601nscd: netgroup cache may terminate daemon on memory allocation failure7.3May 6, 2024
• CVE-2024-33600nscd: Null pointer crashes after notfound response5.9May 6, 2024
• CVE-2024-33599nscd: Stack-based buffer overflow in netgroup cache8.1May 6, 2024