netapp

2,510 tracked vulnerabilities.

CVE-2022-21522 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in Stored Procedure
Jul 19, 2022
CVSS 4.4
EPSS 0.00
CVE-2022-21519 MEDIUM
Oracle MySQL Cluster <= 8.0.29 - Unauthenticated Denial of Service via Multiple Protocols
Jul 19, 2022
CVSS 5.9
EPSS 0.01
CVE-2022-21517 MEDIUM
MySQL Server <= 8.0.29 - Authenticated Denial of Service in InnoDB
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21515 MEDIUM
MySQL Server <= 5.7.38 and <= 8.0.29 - Authenticated Denial of Service in Server Options
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21509 MEDIUM
MySQL Server < 8.0.29 - Authenticated Denial of Service and Data Manipulation via Optimizer
Jul 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21455 MEDIUM
Oracle MySQL <8.0.28 - Privilege Escalation
Jul 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-34169 HIGH
Apache Xalan <2.7.3 - Code Injection
Jul 19, 2022
CVSS 7.5
EPSS 0.11
CVE-2022-30634 HIGH
GO < 1.17.11 - Infinite Loop
Jul 15, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-31107 HIGH
Grafana <9.0.3, 8.5.9, 8.4.10, 8.3.10 - Auth Bypass
Jul 15, 2022
CVSS 7.1
EPSS 0.01
CVE-2022-31097 HIGH
Grafana <9.0.3, <8.5.9, <8.4.10, <8.3.10 - XSS
Jul 15, 2022
CVSS 7.3
EPSS 0.48
CVE-2022-2048 HIGH
Eclipse Jetty < 9.4.47 - Denial of Service via HTTP/2 Request Error Handling
Jul 07, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-2047 LOW
Eclipse Jetty 9.4.0-9.4.46, 10.0.0-10.0.9, 11.0.0-11.0.9 - Improper Input Validation in HttpURI Authority Parsing
Jul 07, 2022
CVSS 2.7
EPSS 0.01
CVE-2022-32208 MEDIUM
curl 7.16.4-7.83.1 - Man-In-The-Middle Attack via FTP KRB5 Message Verification Failure
Jul 07, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-32207 CRITICAL
curl 7.69.0-7.83.1 - Unauthenticated File Permission Overwrite via Atomic Rename
Jul 07, 2022
CVSS 9.8
EPSS 0.00
CVE-2022-32206 MEDIUM
curl < 7.84.0 - Denial of Service via Unbounded HTTP Compression Chain
Jul 07, 2022
CVSS 6.5
EPSS 0.03
CVE-2022-32205 MEDIUM
curl 7.71.0-7.84.0 - Denial of Service via Excessive Set-Cookie Headers
Jul 07, 2022
CVSS 4.3
EPSS 0.02
CVE-2022-2318 MEDIUM
Linux Kernel < 5.19 - Use-After-Free in ROSE Timer Handler
Jul 06, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-33980 CRITICAL
Apache Commons Configuration <2.8 - RCE
Jul 06, 2022
CVSS 9.8
EPSS 0.87
CVE-2022-2097 MEDIUM
OpenSSL 1.1.1-1.1.1p and 3.0.0-3.0.4 - Data Exposure via AES OCB Mode on 32-bit x86 Platforms
Jul 05, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-34918 HIGH
Netfilter nft_set_elem_init Heap Overflow Privilege Escalation
Jul 04, 2022
CVSS 7.8
EPSS 0.36
CVE-2022-34903 MEDIUM
GnuPG < 2.3.6 - Signature Forgery via Status Line Injection
Jul 01, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-2274 CRITICAL
OpenSSL 3.0.4 - Remote Code Execution via RSA AVX512IFMA Memory Corruption
Jul 01, 2022
CVSS 9.8
EPSS 0.40
CVE-2022-2058 MEDIUM
libtiff 4.4.0 - Denial of Service via Crafted TIFF File
Jun 30, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-2057 MEDIUM
libtiff 4.4.0 - Denial of Service via Divide By Zero in tiffcrop
Jun 30, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-2056 MEDIUM
libtiff 4.4.0 - Denial of Service via Crafted TIFF File
Jun 30, 2022
CVSS 5.5
EPSS 0.00
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV