Smi-s provider

This hub aggregates every CVE we track for Smi-s provider, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Smi-s provider.

• CVE-2023-29552The Service Location Protocol (SLP, RFC 2608) allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial...KEV7.5Apr 25, 2023
• CVE-2022-40304An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can...7.8Nov 23, 2022
• CVE-2022-2068The c_rehash script allows command injection7.3Jun 21, 2022
• CVE-2022-1473Resource leakage when decoding certificates and keys7.5May 3, 2022
• CVE-2022-1434Incorrect MAC key used in the RC4-MD5 ciphersuite5.9May 3, 2022
• CVE-2022-1343OCSP_basic_verify may incorrectly verify the response signing certificate5.3May 3, 2022
• CVE-2022-1292The c_rehash script allows command injection7.3May 3, 2022
• CVE-2022-29824In libxml2 before 2.9.14, several buffer handling functions in buf.c (xmlBuf*) and tree.c (xmlBuffer*) don't check for integer overflows. This can result in out-of-bounds memory writes. Exploitatio...6.5May 3, 2022
• CVE-2022-23308valid.c in libxml2 before 2.9.13 has a use-after-free of ID and IDREF attributes.7.5Feb 26, 2022
• CVE-2021-3541A flaw was found in libxml2. Exponential entity expansion attack its possible bypassing all existing protection mechanisms and leading to denial of service.6.5Jul 9, 2021
• CVE-2020-15861Net-SNMP through 5.7.3 allows Escalation of Privileges because of UNIX symbolic link (symlink) following.7.8Aug 19, 2020
• CVE-2020-15862Net-SNMP through 5.8 has Improper Privilege Management because SNMP WRITE access to the EXTEND MIB provides the ability to run arbitrary commands as root.7.8Aug 19, 2020
• CVE-2020-1967Segmentation fault in SSL_check_chain7.5Apr 21, 2020
• CVE-2020-7595xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation.7.5Jan 21, 2020
• CVE-2019-20388xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.7.5Jan 21, 2020