netapp

2,510 tracked vulnerabilities.

CVE-2021-29505 HIGH NUCLEI
XStream < 1.4.17 - Remote Code Execution via Untrusted Data Deserialization
May 28, 2021
CVSS 7.5
EPSS 0.90
CVE-2021-33587 HIGH
css-what 4.0.0-5.0.0 - Denial of Service via Attribute Parsing
May 28, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-33623 HIGH
trim-newlines < 3.0.1 and 4.x < 4.0.1 - Regular Expression Denial-of-Service in .end() Method
May 28, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-22118 HIGH
Spring Framework 5.2.0-5.2.14 - Authenticated Privilege Escalation via WebFlux Temporary Storage Directory
May 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-31808 MEDIUM
Squid < 4.15 and 5.x < 5.0.6 - Denial of Service via HTTP Range Request
May 27, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-33200 HIGH
Linux kernel <5.12.7 - Privilege Escalation
May 27, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-31806 MEDIUM
Squid < 4.15 and 5.x < 5.0.6 - Denial of Service via HTTP Range Request Processing
May 27, 2021
CVSS 6.5
EPSS 0.85
CVE-2021-28651 HIGH
Squid < 4.15 and 5.x < 5.0.6 - Denial of Service via URN Scheme Memory Leak
May 27, 2021
CVSS 7.5
EPSS 0.06
CVE-2021-25217 HIGH
ISC DHCP <4.1-ESV-R16, 4.4.0-4.4.2 - Info Disclosure
May 26, 2021
CVSS 7.4
EPSS 0.00
CVE-2021-22543 HIGH
Linux Kernel - Use-After-Free via KVM VM_IO|VM_PFNMAP Handling
May 26, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-33574 CRITICAL
GNU C Library <2.32-2.33 - Use After Free
May 25, 2021
CVSS 9.8
EPSS 0.00
CVE-2021-32640 MEDIUM
WS < 6.2.2 - Denial of Service
May 25, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-3559 MEDIUM
libvirt 6.10.0-6.12.0 - Denial of Service via virConnectListAllNodeDevices API
May 24, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-31440 HIGH
Linux Kernel 5.11.15 - Privilege Escalation
May 21, 2021
CVSS 7.0
EPSS 0.01
CVE-2021-3426 MEDIUM
Python < 3.8.9, < 3.9.3, < 3.10.0a7 - Information Disclosure via pydoc Server
May 20, 2021
CVSS 5.7
EPSS 0.00
CVE-2021-3517 HIGH
libxml2 < 2.9.11 - Out-of-bounds Read in XML Entity Encoding
May 19, 2021
CVSS 8.6
EPSS 0.00
CVE-2021-3518 HIGH
libxml2 < 2.9.11 - Use-After-Free
May 18, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-3483 HIGH
Linux Kernel < 5.12 - Use-After-Free in Nosy Driver
May 17, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-3537 MEDIUM
libxml2 < 2.9.11 - NULL Pointer Dereference via XML Mixed Content Parsing
May 14, 2021
CVSS 5.9
EPSS 0.00
CVE-2021-32399 HIGH
Linux Kernel < 5.12.2 - Race Condition in HCI Controller Removal
May 10, 2021
CVSS 7.0
EPSS 0.00
CVE-2021-3501 HIGH
Linux kernel <5.12 - Memory Corruption
May 06, 2021
CVSS 7.1
EPSS 0.00
CVE-2021-29489 HIGH
Highcharts < 9.0.0 - Stored Cross-Site Scripting via Chart Options Structure
May 05, 2021
CVSS 7.6
EPSS 0.00
CVE-2021-23383 MEDIUM
handlebars < 4.7.7 - Prototype Pollution via Template Compilation
May 04, 2021
CVSS 5.6
EPSS 0.06
CVE-2021-31879 MEDIUM
GNU Wget < 1.21.1 - Authorization Header Exposure via Redirect
Apr 29, 2021
CVSS 6.1
EPSS 0.00
CVE-2021-25216 HIGH
BIND GSS-TSIG - Denial of Service or Code Execution via SPNEGO Parsing
Apr 29, 2021
CVSS 8.1
EPSS 0.28
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV