netapp

2,510 tracked vulnerabilities.

CVE-2021-28165 HIGH
Eclipse Jetty 7.2.2-9.4.38, 10.0.0.alpha0-10.0.1, 11.0.0.alpha0-11.0.1 - Denial of Service via Invalid TLS Frame
Apr 01, 2021
CVSS 7.5
EPSS 0.14
CVE-2021-28164 MEDIUM NUCLEI
Eclipse Jetty - Information Disclosure
Apr 01, 2021
CVSS 5.3
EPSS 0.93
CVE-2021-28163 LOW
NetApp Cloud Manager - Exposure of Sensitive Information via Symlink Webapps Directory
Apr 01, 2021
CVSS 2.7
EPSS 0.00
CVE-2021-29662 HIGH
Data::Validate::IP <0.29 - Info Disclosure
Mar 31, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-21409 MEDIUM
Netty < 4.1.61 - HTTP Request Smuggling via Single Http2HeaderFrame
Mar 30, 2021
CVSS 5.9
EPSS 0.03
CVE-2021-20289 MEDIUM
RESTEasy < 4.6.0 - Information Exposure via Error Message
Mar 26, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-20284 MEDIUM
GNU Binutils 2.35.1 - Heap-Based Buffer Overflow in _bfd_elf_slurp_secondary_reloc_section
Mar 26, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-20197 MEDIUM
GNU binutils < 2.35 - Race Condition in ar, objcopy, strip, ranlib
Mar 26, 2021
CVSS 6.3
EPSS 0.00
CVE-2021-3450 HIGH
OpenSSL 1.1.1h-1.1.1j - Certificate Chain Validation Bypass via X509_V_FLAG_X509_STRICT
Mar 25, 2021
CVSS 7.4
EPSS 0.01
CVE-2021-3449 MEDIUM
Openssl < 1.1.1k - NULL Pointer Dereference
Mar 25, 2021
CVSS 5.9
EPSS 0.10
CVE-2021-21351 MEDIUM NUCLEI
Oracle Banking Platform < 5.15.14 - Insecure Deserialization
Mar 23, 2021
CVSS 5.4
EPSS 0.92
CVE-2021-21350 MEDIUM
Netapp Oncommand Insight < 5.15.14 - Insecure Deserialization
Mar 23, 2021
CVSS 5.3
EPSS 0.09
CVE-2021-21349 MEDIUM
Netapp Oncommand Insight < 5.15.14 - SSRF
Mar 23, 2021
CVSS 6.1
EPSS 0.07
CVE-2021-21348 MEDIUM
Netapp Oncommand Insight < 5.15.14 - Insecure Deserialization
Mar 23, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-21347 MEDIUM
Netapp Oncommand Insight < 5.15.14 - Insecure Deserialization
Mar 23, 2021
CVSS 6.1
EPSS 0.03
CVE-2021-21346 MEDIUM
Netapp Oncommand Insight < 5.15.14 - Insecure Deserialization
Mar 23, 2021
CVSS 6.1
EPSS 0.04
CVE-2021-21345 MEDIUM NUCLEI
Netapp Oncommand Insight < 5.15.14 - Insecure Deserialization
Mar 23, 2021
CVSS 5.8
EPSS 0.88
CVE-2021-21344 MEDIUM
Netapp Oncommand Insight < 5.15.14 - Insecure Deserialization
Mar 23, 2021
CVSS 5.3
EPSS 0.31
CVE-2021-21343 MEDIUM
XStream <1.4.16 - Code Injection
Mar 23, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-21342 MEDIUM
Netapp Oncommand Insight < 5.15.14 - SSRF
Mar 23, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-21341 HIGH
NetApp OnCommand Insight - Denial of Service via XStream Deserialization
Mar 23, 2021
CVSS 7.5
EPSS 0.27
CVE-2021-28972 MEDIUM
Linux Kernel < 4.4.263 - Buffer Overflow in RPA PCI Hotplug Driver via drc_name
Mar 22, 2021
CVSS 6.7
EPSS 0.00
CVE-2021-28971 MEDIUM
Linux Kernel < 5.11.8 - Denial of Service via PEBS Status Mishandling
Mar 22, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-28964 MEDIUM
Linux Kernel < 5.11.8 - Denial of Service via Race Condition in Btrfs get_old_root
Mar 22, 2021
CVSS 4.7
EPSS 0.00
CVE-2021-28957 MEDIUM
lxml < 4.6.3 - Cross-Site Scripting via Formaction Attribute Bypass
Mar 21, 2021
CVSS 6.1
EPSS 0.01
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV