netapp

2,510 tracked vulnerabilities.

CVE-2022-1343 MEDIUM
OpenSSL 3.0.0-3.0.2 - Improper Certificate Validation in OCSP_basic_verify
May 03, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-1292 HIGH
Siemens Brownfield Connectivity Gateway < 2.15 - OS Command Injection
May 03, 2022
CVSS 7.3
EPSS 0.41
CVE-2022-29824 MEDIUM
libxml2 < 2.9.14 - Integer Overflow via Buffer Handling Functions
May 03, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-29968 HIGH
Linux kernel <5.17.5 - Info Disclosure
May 02, 2022
CVSS 7.8
EPSS 0.02
CVE-2022-25844 MEDIUM
angularjs >=1.7.0 - Regular Expression Denial of Service via Custom Locale Rule
May 01, 2022
CVSS 5.3
EPSS 0.02
CVE-2022-25647 HIGH
Gson < 2.8.9 - Denial of Service via Untrusted Data Deserialization
May 01, 2022
CVSS 7.7
EPSS 0.03
CVE-2022-1353 HIGH
Linux Kernel < 5.17 - Unauthenticated Exposure of Sensitive Information via pfkey_register
Apr 29, 2022
CVSS 7.1
EPSS 0.00
CVE-2022-1048 HIGH
Linux Kernel 2.6.12-4.14.279 - Use-After-Free in ALSA PCM hw_params
Apr 29, 2022
CVSS 7.0
EPSS 0.00
CVE-2022-24891 MEDIUM
OWASP Enterprise Security API < 2.3.0.0 - Cross-Site Scripting via antisamy-esapi.xml onsiteURL Regex
Apr 27, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-24736 LOW
Redis <6.2.7 & <7.0.0 - NULL Pointer Dereference
Apr 27, 2022
CVSS 3.3
EPSS 0.02
CVE-2022-24735 LOW
Redis <7.0.0-6.2.7 - Code Injection
Apr 27, 2022
CVSS 3.9
EPSS 0.02
CVE-2022-23457 HIGH
OWASP Enterprise Security API < 2.3.0.0 - Path Traversal via Validator.getValidDirectoryPath
Apr 25, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-24675 HIGH
Go <1.17.9, <1.18.0 - Buffer Overflow
Apr 20, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-21496 MEDIUM
Oracle GraalVM & Java SE - Unauthenticated Data Manipulation via JNDI
Apr 19, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-21490 MEDIUM
Oracle MySQL <7.4.35, 7.5.25, 7.6.21, 8.0.28 - Privilege Escalation
Apr 19, 2022
CVSS 6.3
EPSS 0.43
CVE-2022-21489 MEDIUM
Oracle MySQL <7.4.35, 7.5.25, 7.6.21, 8.0.28 - Privilege Escalation
Apr 19, 2022
CVSS 6.3
EPSS 0.09
CVE-2022-21486 LOW
MySQL Cluster <= 7.4.35, <= 7.5.25, <= 7.6.21, <= 8.0.28 - Unauthorized Read Access and Partial Denial of Service
Apr 19, 2022
CVSS 2.9
EPSS 0.00
CVE-2022-21485 LOW
MySQL Cluster <= 7.4.35, <= 7.5.25, <= 7.6.21, <= 8.0.28 - Unauthorized Read Access and Partial Denial of Service
Apr 19, 2022
CVSS 2.9
EPSS 0.00
CVE-2022-21484 LOW
Oracle MySQL Cluster <= 7.4.35, <= 7.5.25, <= 7.6.21, <= 8.0.28 - Unauthorized Read Access and Partial Denial of Service
Apr 19, 2022
CVSS 2.9
EPSS 0.00
CVE-2022-21483 MEDIUM
Oracle MySQL <7.4.35, 7.5.25, 7.6.21, 8.0.28 - Privilege Escalation
Apr 19, 2022
CVSS 6.3
EPSS 0.13
CVE-2022-21482 MEDIUM
Oracle MySQL <8.0.28 - Privilege Escalation
Apr 19, 2022
CVSS 6.3
EPSS 0.13
CVE-2022-21479 MEDIUM
MySQL Server < 8.0.28 - Authenticated Denial of Service and Information Disclosure in Optimizer
Apr 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21478 MEDIUM
MySQL < 8.0.28 - Authenticated Denial of Service and Data Manipulation in Server Optimizer
Apr 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21476 HIGH
Oracle GraalVM & Java SE Unauthenticated Data Access via Libraries
Apr 19, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-21462 MEDIUM
MySQL Server <= 8.0.28 - Authenticated Denial of Service in Optimizer
Apr 19, 2022
CVSS 4.9
EPSS 0.00
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV