H500s

This hub aggregates every CVE we track for H500s, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting H500s.

• CVE-2023-4004Kernel: netfilter: use-after-free due to improper element removal in nft_pipapo_remove()7.8Jul 31, 2023
• CVE-2023-32248Tree connection null pointer dereference denial-of-service vulnerability7.5Jul 24, 2023
• CVE-2023-32257Session race condition remote code execution vulnerability8.1Jul 24, 2023
• CVE-2023-32258Session race condition remote code execution vulnerability8.1Jul 24, 2023
• CVE-2023-32247Session setup memory exhaustion denial-of-service vulnerability7.5Jul 24, 2023
• CVE-2023-38426An issue was discovered in the Linux kernel before 6.3.4. ksmbd has an out-of-bounds read in smb2_find_context_vals when create_context's name_len is larger than the tag length.9.1Jul 17, 2023
• CVE-2023-38428An issue was discovered in the Linux kernel before 6.3.4. fs/ksmbd/smb2pdu.c in ksmbd does not properly check the UserName value because it does not consider the address of security buffer, leading...9.1Jul 17, 2023
• CVE-2023-38432An issue was discovered in the Linux kernel before 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the relationship between the command payload size and the RFC1002 length specification...9.1Jul 17, 2023
• CVE-2023-38427An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an integer underflow and out-of-bounds read in deassemble_neg_contexts.9.8Jul 17, 2023
• CVE-2023-38430An issue was discovered in the Linux kernel before 6.3.9. ksmbd does not validate the SMB request protocol ID, leading to an out-of-bounds read.9.1Jul 17, 2023
• CVE-2023-38431An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/connection.c in ksmbd does not validate the relationship between the NetBIOS header's length field and the SMB header sizes, ...9.1Jul 17, 2023
• CVE-2023-32254Tree connection race condition remote code execution vulnerability9.8Jul 10, 2023
• CVE-2023-32250Session race condition remote code execution vulnerability9.0Jul 10, 2023
• CVE-2023-35001Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability7.8Jul 5, 2023
• CVE-2023-3390Use-after-free in Linux kernel's netfilter subsystem7.8Jun 28, 2023