netapp

2,510 tracked vulnerabilities.

CVE-2022-0562 MEDIUM
libtiff 4.0-4.3.0 - Denial of Service via Crafted TIFF File
Feb 11, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-0561 MEDIUM
libtiff 3.9.0-4.3.0 - Denial of Service via TIFFFetchStripThing memcpy Null Pointer
Feb 11, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-0185 HIGH KEV
Linux kernel - Privilege Escalation
Feb 11, 2022
CVSS 8.4
EPSS 0.02
CVE-2022-24958 HIGH
Linux kernel <5.16.8 - Buffer Overflow
Feb 11, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-23806 CRITICAL
Go <1.16.14, <1.17.7 - Info Disclosure
Feb 11, 2022
CVSS 9.1
EPSS 0.00
CVE-2022-23773 HIGH
GO < 1.16.14 - Interpretation Conflict
Feb 11, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-23772 HIGH
GO < 1.16.14 - Integer Overflow
Feb 11, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-0391 HIGH
Python <3.10.0b1-3.6.14 - Code Injection
Feb 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-21713 MEDIUM
Grafana 5.0.0-7.5.14 - Authenticated Authorization Bypass via Team API Endpoints
Feb 08, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-21703 MEDIUM
Grafana 3.0.1-7.5.14 - Cross-Site Request Forgery for Privilege Escalation
Feb 08, 2022
CVSS 6.3
EPSS 0.02
CVE-2022-21702 MEDIUM
Grafana 2.0.1-7.5.14 - Cross-Site Scripting via Data Source or Plugin Proxy
Feb 08, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-23913 HIGH
Apache ActiveMQ Artemis <2.20.0-2.19.1 - DoS
Feb 04, 2022
CVSS 7.5
EPSS 0.02
CVE-2022-24122 HIGH
Linux kernel <5.16.4 - Privilege Escalation
Jan 29, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-23437 MEDIUM
Apache Xerces-J < 2.12.1 - Denial of Service via Infinite Loop in XML Parser
Jan 24, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-23852 CRITICAL
libexpat < 2.4.4 - Integer Overflow in XML_GetBuffer
Jan 24, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-21380 MEDIUM
Oracle MySQL <7.4.34, 7.5.24, 7.6.20, 8.0.27 - Privilege Escalation
Jan 19, 2022
CVSS 6.3
EPSS 0.31
CVE-2022-21379 MEDIUM
MySQL Server < 8.0.27 - Authenticated Denial of Service in Group Replication Plugin
Jan 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21378 MEDIUM
MySQL Server < 8.0.27 - Authenticated Denial of Service and Data Manipulation in Optimizer
Jan 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21374 MEDIUM
MySQL Server < 8.0.27 - Authenticated Denial of Service in Information Schema
Jan 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21372 LOW
Oracle MySQL < 8.0.27 - Authenticated Partial Denial of Service in Server Security Encryption
Jan 19, 2022
CVSS 2.7
EPSS 0.00
CVE-2022-21370 MEDIUM
MySQL Server < 8.0.27 - Authenticated Denial of Service in Optimizer
Jan 19, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-21368 MEDIUM
MySQL < 8.0.27 - Authenticated Partial Denial of Service and Data Manipulation
Jan 19, 2022
CVSS 4.7
EPSS 0.00
CVE-2022-21367 MEDIUM
MySQL Server < 5.7.36 and 8.0.27 - Denial of Service and Data Manipulation via Compiling Component
Jan 19, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-21366 MEDIUM
Oracle GraalVM 20.3.4, 21.3.0 and Oracle JDK/JRE 11.0.13, 17.0.1 - Unauthenticated Partial Denial of Service in ImageIO
Jan 19, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-21365 MEDIUM
Oracle GraalVM Enterprise Edition 20.3.4 and 21.3.0 - Unauthenticated Partial Denial of Service via ImageIO
Jan 19, 2022
CVSS 5.3
EPSS 0.00
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV