Lucene search
K

266 matches found

CVE
CVE
added 2024/04/06 11:56 a.m.84 views

CVE-2024-24746

CVE-2024-24746: Apache NimBLE's GATT server is vulnerable to a Denial of Service via a specially crafted GATT operation that causes an infinite loop. Affected software: NimBLE up to version 1.6.0; impact is denial of service to the Bluetooth stack/device. Remediation: upgrade to NimBLE 1.7.0 (fix).

7.5CVSS7.5AI score0.01458EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/04/06 11:56 a.m.32 views

CVE-2024-24746 Apache NimBLE: Denial of service in NimBLE Bluetooth stack

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Apache NimBLE. Specially crafted GATT operation can cause infinite loop in GATT server leading to denial of service in Bluetooth stack or device. This issue affects Apache NimBLE: through 1.6.0. Users are recommended to upgrade...

6.7AI score0.01458EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2024/04/06 11:56 a.m.2 views

CVE-2024-24746

Loop with Unreachable Exit Condition 'Infinite Loop' vulnerability in Apache NimBLE. Specially crafted GATT operation can cause infinite loop in GATT server leading to denial of service in Bluetooth stack or device. This issue affects Apache NimBLE: through 1.6.0. Users are recommended to upgrade...

7.5CVSS7.2AI score0.01458EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/04/06 12:0 a.m.5 views

Apache NimBLE 安全漏洞

Apache NimBLE is an open source Bluetooth 5.4 stack host and controller from the Apache Foundation in the U.S. It completely replaces the proprietary SoftDevice on the Nordic chipset.It is part of the Apache Mynewt project. A denial-of-service vulnerability exists in Apache NimBLE version 1.6.0 a...

7.5CVSS6.7AI score0.01458EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/05 12:0 a.m.4 views

PT-2024-20526 · Apache · Apache Nimble

Name of the Vulnerable Software and Affected Versions: Apache NimBLE versions through 1.6.0 Description: A specially crafted GATT operation can cause an infinite loop in the GATT server, leading to a denial of service in the Bluetooth stack or device. Recommendations: For Apache NimBLE versions...

7.5CVSS7.2AI score0.01458EPSS
Exploits0References10
Veeam
Veeam
added 2023/08/03 12:0 a.m.23 views

FC-Only Nimble Array Snapshot Failures in Veeam Backup & Replication P20230718

Challenge When using Veeam Backup & Replication 12 P20230718, rescan, backup, and restore operations may fail when the Nimble array is configured to only use Fibre Channel FC protocol. The request could not be understood by the server. Unexpected argument 'multiinitiator'. Solution A private fix ...

7AI score
Exploits0Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:46 a.m.5 views

SUSE CVE-2021-21372

Nimble is a package manager for the Nim programming language. In Nim release version before versions 1.2.10 and 1.4.4, Nimble doCmd is used in different places and can be leveraged to execute arbitrary commands. An attacker can craft a malicious entry in the packages.json package list to trigger...

8.8CVSS9.1AI score0.03635EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:46 a.m.3 views

SUSE CVE-2021-21373

Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, "nimble refresh" fetches a list of Nimble packages over HTTPS by default. In case of error it falls back to a non-TLS URL http://irclogs.nim-lang.org/packages.json. An attacker...

5.9CVSS6.9AI score0.01155EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:46 a.m.2 views

SUSE CVE-2021-21374

Nimble is a package manager for the Nim programming language. In Nim release versions before versions 1.2.10 and 1.4.4, "nimble refresh" fetches a list of Nimble packages over HTTPS without full verification of the SSL/TLS certificate due to the default setting of httpClient. An attacker able to...

8.1CVSS8.3AI score0.01044EPSS
Exploits1References7
OSV
OSV
added 2022/12/12 1:15 p.m.7 views

CVE-2022-37930

A security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays and HPE Nimble Storage Secondary Flash Arrays which could potentially allow local disclosure of sensitive information...

5.5CVSS5.7AI score
Exploits0References1
OSV
OSV
added 2022/12/12 1:15 p.m.4 views

CVE-2022-37929

Improper Privilege Management vulnerability in Hewlett Packard Enterprise Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays...

5.5CVSS5.8AI score0.00145EPSS
Exploits0References1
OSV
OSV
added 2022/12/12 1:15 p.m.3 views

CVE-2022-37928

Insufficient Verification of Data Authenticity vulnerability in Hewlett Packard Enterprise HPE Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays...

6.5CVSS5.8AI score0.00278EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.18 views

CVE-2022-37928

Insufficient Verification of Data Authenticity vulnerability in Hewlett Packard Enterprise HPE Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays...

8CVSS0.00278EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.11 views

CVE-2022-37929

Improper Privilege Management vulnerability in Hewlett Packard Enterprise Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays...

6.7CVSS0.00145EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.14 views

CVE-2022-37930

A security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays and HPE Nimble Storage Secondary Flash Arrays which could potentially allow local disclosure of sensitive information...

6.7CVSS0.00163EPSS
Exploits0References1
Prion
Prion
added 2022/12/12 1:15 p.m.20 views

Information disclosure

A security vulnerability has been identified in HPE Nimble Storage Hybrid Flash Arrays and HPE Nimble Storage Secondary Flash Arrays which could potentially allow local disclosure of sensitive information...

1.7CVSS5.5AI score0.00163EPSS
Exploits0References1Affected Software9
Prion
Prion
added 2022/12/12 1:15 p.m.12 views

Privilege escalation

Improper Privilege Management vulnerability in Hewlett Packard Enterprise Nimble Storage Hybrid Flash Arrays and Nimble Storage Secondary Flash Arrays...

1.7CVSS5.6AI score0.00145EPSS
Exploits0References1Affected Software9
CNNVD
CNNVD
added 2022/12/12 12:0 a.m.5 views

Hewlett Packard Enterprise Nimble Storage systems 安全漏洞

Hewlett Packard Enterprise Nimble Storage systems is a predictive flash storage technology from Hewlett Packard Enterprise that ensures that applications continue to run throughout hybrid cloud environments. A security vulnerability exists in Hewlett Packard Enterprise Nimble Storage systems, whi...

6.7CVSS5.7AI score0.00163EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/12/12 12:0 a.m.6 views

Hewlett Packard Enterprise OneView 数据伪造问题漏洞

Hewlett Packard Enterprise OneView is a software from Hewlett Packard Enterprise that facilitates automated device management for IT departments. Hewlett Packard Enterprise OneView has a security vulnerability that stems from inadequate validation of data authenticity vulnerabilities in hybrid...

8CVSS6.5AI score0.00278EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/12/12 12:0 a.m.4 views

Hewlett Packard Enterprise Nimble Storage systems 安全漏洞

Hewlett Packard Enterprise Nimble Storage systems is a predictive flash storage technology from Hewlett Packard Enterprise that ensures that applications continue to run throughout hybrid cloud environments. A security vulnerability exists in Hewlett Packard Enterprise Nimble Storage systems that...

6.7CVSS5.7AI score0.00145EPSS
Exploits0References2
Rows per page
Query Builder