netapp

2,510 tracked vulnerabilities.

CVE-2021-43818 HIGH
lxml < 4.6.5 - Cross-Site Scripting via HTML Cleaner Bypass
Dec 13, 2021
CVSS 8.2
EPSS 0.05
CVE-2021-44228 CRITICAL KEVNUCLEI
Log4Shell HTTP Header Injection
Dec 10, 2021
CVSS 10.0
EPSS 0.94
CVE-2021-43797 MEDIUM
Netty <4.1.71.Final - HTTP Request Smuggling
Dec 09, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-39002 HIGH
IBM DB2 9.7, 10.1, 10.5, 11.1, 11.5 - Use of a Broken or Risky Cryptographic Algorithm
Dec 09, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-38931 MEDIUM
IBM Db2 <11.1,11.5 - Info Disclosure
Dec 09, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-38926 MEDIUM
IBM Db2 9.7, 10.1, 10.5, 11.1, 11.5 - Privilege Escalation via Task Column Modification
Dec 09, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-29678 HIGH
IBM Db2 9.7, 10.1, 10.5, 11.1, 11.5 - Incorrect Authorization
Dec 09, 2021
CVSS 8.7
EPSS 0.00
CVE-2021-43527 CRITICAL
NSS <3.73-3.68.1 ESR - Buffer Overflow
Dec 08, 2021
CVSS 9.8
EPSS 0.05
CVE-2021-38909 MEDIUM
IBM Cognos Analytics <11.1.7,11.2.0 - XSS
Dec 03, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29867 MEDIUM
IBM Cognos Analytics <11.2.0 - Info Disclosure
Dec 03, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-29756 HIGH
IBM Cognos Analytics 11.1.7 and 11.2.0 - Cross-Site Request Forgery in My Inbox Page
Dec 03, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-29719 MEDIUM
IBM Cognos Analytics 11.1.0-11.1.7 - Client-Side Vulnerability via Incorrect Content Type
Dec 03, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-29716 MEDIUM
IBM Cognos Analytics <11.2.0 - Info Disclosure
Dec 03, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-20493 MEDIUM
IBM Cognos Analytics <11.1.7,11.2.0 - XSS
Dec 03, 2021
CVSS 6.1
EPSS 0.00
CVE-2021-20470 HIGH
IBM Cognos Analytics <11.2.0 - Info Disclosure
Dec 03, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-21707 MEDIUM
PHP <7.3.33, 7.4.26, 8.0.13 - Info Disclosure
Nov 29, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-43976 MEDIUM
Linux Kernel < 5.15.2 - Denial of Service via Crafted USB Device in mwifiex_usb_recv
Nov 17, 2021
CVSS 4.6
EPSS 0.00
CVE-2021-43975 MEDIUM
Linux kernel <5.15.2 - Buffer Overflow
Nov 17, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-42377 CRITICAL
Busybox - Denial of Service and Possible Remote Code Execution via Hush Applet Pointer Free
Nov 15, 2021
CVSS 9.8
EPSS 0.03
CVE-2021-42376 MEDIUM
Busybox 1.16.0-1.34.0 - Denial of Service via Hush Applet NULL Pointer Dereference
Nov 15, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-42375 MEDIUM
Busybox - Denial of Service via Incorrect Handling of Special Elements in ash Applet
Nov 15, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-42374 MEDIUM
Busybox 1.27.0-1.33.0 - Out-of-bounds Read in unlzma Decompression
Nov 15, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-42373 MEDIUM
Busybox - Denial of Service via NULL Pointer Dereference in Man Applet
Nov 15, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-43618 HIGH
GNU Multiple Precision Arithmetic Library <6.2.1 - Buffer Overflow
Nov 15, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-43616 CRITICAL
npm 7.0.0-8.1.3 - Insufficient Verification of Data Authenticity in npm ci Command
Nov 13, 2021
CVSS 9.0
EPSS 0.02
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV