netapp

2,510 tracked vulnerabilities.

CVE-2022-43680 HIGH
libexpat < 2.4.9 - Use-After-Free in XML_ExternalEntityParserCreate
Oct 24, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-3649 LOW
Linux Kernel < 4.9.331 - Use-After-Free in nilfs_new_inode
Oct 21, 2022
CVSS 3.1
EPSS 0.00
CVE-2022-3627 MEDIUM
LibTIFF < 4.4.0 - Out-of-bounds Write via Crafted TIFF File
Oct 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-3626 MEDIUM
LibTIFF < 4.4.0 - Out-of-bounds Write in _TIFFmemset via Crafted TIFF File
Oct 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-3599 MEDIUM
LibTIFF < 4.4.0 - Out-of-bounds Read in tiffcrop writeSingleSection
Oct 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-3598 MEDIUM
LibTIFF 4.4.0 - Out-of-bounds Write in extractContigSamplesShifted24bits
Oct 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-3597 MEDIUM
LibTIFF < 4.4.0 - Out-of-bounds Write via Crafted TIFF File
Oct 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-23241 HIGH
Clustered Data ONTAP 9.11.1-9.11.1P2 - Authenticated WORM Data Modification and Deletion
Oct 19, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-39410 MEDIUM
MySQL < 8.0.30 - Authenticated Denial of Service in Server Optimizer
Oct 18, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-39408 MEDIUM
MySQL Server < 8.0.30 - Authenticated Denial of Service in Optimizer
Oct 18, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-39400 MEDIUM
MySQL Server < 8.0.30 - Authenticated Denial of Service in Optimizer
Oct 18, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-39399 LOW
Oracle GraalVM 20.3.7, 21.3.3, 22.2.0 - Unauthenticated Data Manipulation via HTTP
Oct 18, 2022
CVSS 3.7
EPSS 0.00
CVE-2022-21641 MEDIUM
MySQL Server < 8.0.29 - Authenticated Denial of Service in Optimizer
Oct 18, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21640 MEDIUM
MySQL Server < 8.0.30 - Authenticated Denial of Service in Optimizer
Oct 18, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21638 MEDIUM
Oracle MySQL Server <= 8.0.29 - Authenticated Denial of Service in Optimizer
Oct 18, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21637 MEDIUM
MySQL < 8.0.30 - Authenticated Denial of Service in InnoDB
Oct 18, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21635 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service and Data Manipulation in InnoDB
Oct 18, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-21633 MEDIUM
MySQL < 8.0.30 - Authenticated Denial of Service in Server Replication
Oct 18, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21632 MEDIUM
MySQL < 8.0.30 - Authenticated Denial of Service in Security Privileges Component
Oct 18, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21628 MEDIUM
Oracle GraalVM and Java SE - Unauthenticated Partial Denial of Service via Lightweight HTTP Server
Oct 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-21626 MEDIUM
Oracle GraalVM EE 20.3.7/21.3.3/22.2.0 & Java SE 8u341/8u345-perf/11.0.16.1 - DoS via HTTPS
Oct 18, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-21625 MEDIUM
MySQL < 8.0.30 - Authenticated Denial of Service in Server Optimizer
Oct 18, 2022
CVSS 4.4
EPSS 0.00
CVE-2022-21624 LOW
Oracle Java SE <19 - Unauthenticated RCE
Oct 18, 2022
CVSS 3.7
EPSS 0.00
CVE-2022-21619 LOW
Oracle GraalVM & Java SE Multiple Versions - Unauthenticated Data Manipulation
Oct 18, 2022
CVSS 3.7
EPSS 0.00
CVE-2022-21618 MEDIUM
Oracle Java SE <19 - Unauthenticated RCE
Oct 18, 2022
CVSS 5.3
EPSS 0.00
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV