netapp

2,510 tracked vulnerabilities.

CVE-2020-16592 MEDIUM
GNU Binutils 2.34 - Use-After-Free in BFD Library via Crafted File
Dec 09, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-16591 MEDIUM
GNU Binutils 2.35 - Denial of Service via Invalid Read in BFD process_symbol_table
Dec 09, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-16590 MEDIUM
GNU Binutils 2.35 - Double Free in BFD Symbol Table Processing
Dec 09, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-29661 HIGH
Linux kernel <5.9.13 - Use After Free
Dec 09, 2020
CVSS 7.8
EPSS 0.01
CVE-2020-29660 MEDIUM
Linux kernel <5.9.14 - Read-After-Free
Dec 09, 2020
CVSS 4.4
EPSS 0.00
CVE-2020-1971 MEDIUM
OpenSSL 1.0.2-1.0.2w and 1.1.1-1.1.1h - Denial of Service via EDIPARTYNAME NULL Pointer Dereference
Dec 08, 2020
CVSS 5.9
EPSS 0.00
CVE-2020-25692 HIGH
OpenLDAP < 2.4.55 - Unauthenticated Denial of Service via RDN Renaming Request
Dec 08, 2020
CVSS 7.5
EPSS 0.06
CVE-2020-17521 MEDIUM
Apache Groovy <4.0.0 - Info Disclosure
Dec 07, 2020
CVSS 5.5
EPSS 0.02
CVE-2020-29573 HIGH
GNU C Library <2.23 - Buffer Overflow
Dec 06, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-29562 MEDIUM
glibc 2.30-2.32 - Denial of Service via Iconv UCS4 Character Conversion
Dec 04, 2020
CVSS 4.8
EPSS 0.00
CVE-2020-17527 HIGH
Apache Tomcat <10.0.0-M9, 9.0.39, 8.5.59 - Info Disclosure
Dec 03, 2020
CVSS 7.5
EPSS 0.11
CVE-2020-27783 MEDIUM
lxml < 4.6.2 - Cross-Site Scripting via Clean Module Parser
Dec 03, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-25711 MEDIUM
Infinispan < 11.0.6 - Missing Authorization for Server Management Operations
Dec 03, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-25649 HIGH
jackson-databind 2.6.0-2.6.7.3 - XML External Entity Injection
Dec 03, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-13956 MEDIUM
Apache HttpClient <4.5.13, 5.0.3 - SSRF
Dec 02, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-14305 HIGH
Linux Kernel - Out-of-bounds Write in H.323 Connection Tracking on IPv6 Port 1720
Dec 02, 2020
CVSS 8.1
EPSS 0.04
CVE-2020-29374 LOW
Linux kernel <5.7.3 - Memory Corruption
Nov 28, 2020
CVSS 3.6
EPSS 0.00
CVE-2020-29370 HIGH
Linux kernel <5.5.11 - Info Disclosure
Nov 28, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-29369 HIGH
Linux Kernel <5.7.11 - Use After Free
Nov 28, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-29368 HIGH
Linux Kernel <5.7.5 - Memory Corruption
Nov 28, 2020
CVSS 7.0
EPSS 0.00
CVE-2020-27218 MEDIUM
Eclipse Jetty 9.4.0-9.4.34 - Sensitive Information Exposure via GZIP Request Body Reuse
Nov 28, 2020
CVSS 4.8
EPSS 0.01
CVE-2020-15436 MEDIUM
Linux Kernel < 4.4.229 - Use After Free
Nov 23, 2020
CVSS 6.7
EPSS 0.00
CVE-2020-28366 HIGH
GO < 1.14.12 - Code Injection
Nov 18, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-28362 HIGH
GO < 1.14.12 - Improper Certificate Validation
Nov 18, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-26217 HIGH NUCLEI
XStream < 1.4.14 - Remote Code Execution via Blocklist Bypass
Nov 16, 2020
CVSS 8.0
EPSS 0.93
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV