Hci compute node

This hub aggregates every CVE we track for Hci compute node, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Hci compute node.

• CVE-2025-27423Improper Input Validation in Vim7.1Mar 3, 2025
• CVE-2025-26603heap-use-after-free in function str_to_reg in vim/vim4.2Feb 18, 2025
• CVE-2025-24928libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untruste...7.8Feb 18, 2025
• CVE-2024-56171libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be ...7.8Feb 18, 2025
• CVE-2025-0509Signing Checks Bypass7.3Feb 4, 2025
• CVE-2024-40896In libxml2 2.11 before 2.11.9, 2.12 before 2.12.9, and 2.13 before 2.13.3, the SAX parser can produce events for external entities even if custom SAX handlers try to override entity content (by set...9.1Dec 23, 2024
• CVE-2024-53580iperf v3.17.1 was discovered to contain a segmentation violation via the iperf_exchange_parameters() function.7.5Dec 18, 2024
• CVE-2024-3447Qemu: sdhci: heap buffer overflow in sdhci_write_dataport()6.0Nov 14, 2024
• CVE-2024-50602An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser.5.9Oct 27, 2024
• CVE-2024-36958NFSD: Fix nfsd4_encode_fattr4() crasher5.5May 30, 2024
• CVE-2024-2961The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which ma...7.3Apr 17, 2024
• CVE-2022-37434zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected...9.8Aug 5, 2022
• CVE-2022-36946nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a o...7.5Jul 27, 2022
• CVE-2022-34169Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets7.5Jul 19, 2022
• CVE-2022-21549Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 17.0.3.1; Oracle Gr...5.3Jul 19, 2022