This page lists publicly disclosed CVE vulnerabilities affecting netapp hci_compute_node_bios (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-47855 | Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 6.0 | 0.05% | 2024-05-16 | 2025-09-02 |
| CVE-2023-45745 | Improper input validation in some Intel(R) TDX module software before version 1.5.05.46.698 may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 7.9 | 0.05% | 2024-05-16 | 2025-09-02 |
| CVE-2023-29153 | Uncontrolled resource consumption for some Intel(R) SPS firmware before version SPS_E5_06.01.04.002.0 may allow a privileged user to potentially enable denial of service via network access. | [email protected] | 4.9 | 0.10% | 2024-02-14 | 2026-01-14 |
| CVE-2021-0060 | Insufficient compartmentalization in HECI subsystem for the Intel(R) SPS before versions SPS_E5_04.01.04.516.0, SPS_E5_04.04.04.033.0, SPS_E5_04.04.03.281.0, SPS_E5_03.01.03.116.0, SPS_E3_05.01.04.309.0, SPS_02.04.00.101.0, SPS_SoC-A_05.00.03.114.0, SPS_SoC-X_04.00.04.326.0, SPS_SoC-X_03.00.03.117.0, IGN_E5_91.00.00.167.0, SPS_PHI_03.01.03.078.0 may allow an authenticated user to potentially enable escalation of privilege via physical access. | [email protected] | 6.6 | 0.23% | 2022-02-09 | 2025-05-05 |
| CVE-2020-8700 | Improper input validation in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 6.7 | 0.14% | 2021-06-09 | 2024-11-21 |
| CVE-2020-8670 | Race condition in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 6.4 | 0.06% | 2021-06-09 | 2024-11-21 |
| CVE-2020-24512 | Observable timing discrepancy in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 3.3 | 0.19% | 2021-06-09 | 2024-11-21 |
| CVE-2020-24511 | Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 6.5 | 0.07% | 2021-06-09 | 2024-11-21 |
| CVE-2020-24486 | Improper input validation in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable denial of service via local access. | [email protected] | 5.5 | 0.25% | 2021-06-09 | 2024-11-21 |
| CVE-2020-12360 | Out of bounds read in the firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 7.8 | 0.38% | 2021-06-09 | 2024-11-21 |
| CVE-2020-12359 | Insufficient control flow management in the firmware for some Intel(R) Processors may allow an unauthenticated user to potentially enable escalation of privilege via physical access. | [email protected] | 6.8 | 0.37% | 2021-06-09 | 2024-11-21 |
| CVE-2020-12358 | Out of bounds write in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable denial of service via local access. | [email protected] | 4.4 | 0.18% | 2021-06-09 | 2024-11-21 |
| CVE-2020-12357 | Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 6.7 | 0.26% | 2021-06-09 | 2024-11-21 |
| CVE-2020-29569 | An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly toggles between the states connect and disconnect. As a consequence, the block backend may re-use a pointer after it was freed. A misbehaving guest can trigger a dom0 crash by continuously connecting / disconnecting a block | [email protected] | 8.8 | 0.19% | 2020-12-15 | 2024-11-21 |
| CVE-2020-29374 | An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended write access, aka CID-17839856fd58. | [email protected] | 3.6 | 0.02% | 2020-11-28 | 2024-11-21 |
| CVE-2020-8764 | Improper access control in BIOS firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 6.7 | 0.14% | 2020-11-12 | 2024-11-21 |
| CVE-2020-8740 | Out of bounds write in Intel BIOS platform sample code for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 6.7 | 0.12% | 2020-11-12 | 2024-11-21 |
| CVE-2020-8739 | Use of potentially dangerous function in Intel BIOS platform sample code for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access. | [email protected] | 7.8 | 0.09% | 2020-11-12 | 2024-11-21 |
| CVE-2020-8738 | Improper conditions check in Intel BIOS platform sample code for some Intel(R) Processors before may allow a privileged user to potentially enable escalation of privilege via local access. | [email protected] | 6.7 | 0.12% | 2020-11-12 | 2024-11-21 |
| CVE-2020-8698 | Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 5.5 | 0.25% | 2020-11-12 | 2024-11-21 |