netapp

2,510 tracked vulnerabilities.

CVE-2020-25644 HIGH
WildFly OpenSSL < 1.1.3 - Memory Leak Denial of Service via HTTP Session Removal
Oct 06, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-25643 HIGH
Linux Kernel < 5.9-rc7 - Memory Corruption and Denial of Service in HDLC_PPP Module
Oct 06, 2020
CVSS 7.2
EPSS 0.00
CVE-2020-7070 MEDIUM
PHP 7.2.0-7.2.33, 7.3.0-7.3.22, 7.4.0-7.4.10 - Cookie Prefix Confusion via URL Decoding
Oct 02, 2020
CVSS 4.3
EPSS 0.26
CVE-2020-7069 MEDIUM
PHP 7.2.0-7.2.33, 7.3.0-7.3.22, 7.4.0-7.4.10 - Inadequate Encryption Strength in AES-CCM Mode
Oct 02, 2020
CVSS 5.4
EPSS 0.08
CVE-2020-26116 HIGH
Python 3.x < 3.5.10, 3.6.x < 3.6.12, 3.7.x < 3.7.9, 3.8.x < 3.8.5 - HTTP Header Injection via HTTPConnection.request
Sep 27, 2020
CVSS 7.2
EPSS 0.01
CVE-2020-24718 HIGH
FreeBSD through 12.1 - Missing Authorization in bhyve VMCS/VMCB Operations
Sep 25, 2020
CVSS 8.2
EPSS 0.00
CVE-2020-10714 HIGH
WildFly Elytron <1.11.3.Final - Privilege Escalation
Sep 23, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-5421 MEDIUM
Spring Framework 4.3.0-4.3.28, 5.0.0-5.0.18, 5.1.0-5.1.17, 5.2.0-5.2.8 - Reflection File Download
Sep 19, 2020
CVSS 6.5
EPSS 0.64
CVE-2020-8758 CRITICAL
Intel(R) AMT/ISM <11.8.79-12.0.68-14.0.39 - Privilege Escalation
Sep 10, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-25221 HIGH
Linux Kernel 5.7.x-5.8.x < 5.8.7 - Privilege Escalation via Gate Page Reference Count Underflow
Sep 10, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-24977 MEDIUM
libxml2 2.9.10 - Out-of-bounds Read in xmlEncodeEntitiesInternal
Sep 04, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-8576 MEDIUM
Clustered Data ONTAP <9.3P19-9.7 - Info Disclosure
Sep 02, 2020
CVSS 5.4
EPSS 0.00
CVE-2020-13946 MEDIUM
Apache Cassandra < 2.1.22, 2.2.18, 3.0.22, 3.11.8, 4.0-beta2 - Credential Exposure via JMX RMI
Sep 01, 2020
CVSS 5.9
EPSS 0.00
CVE-2020-24616 HIGH
FasterXML jackson-databind <2.9.10.6 - RCE
Aug 25, 2020
CVSS 8.1
EPSS 0.03
CVE-2020-8624 MEDIUM
BIND <9.16.5 - Privilege Escalation
Aug 21, 2020
CVSS 4.3
EPSS 0.02
CVE-2020-8623 HIGH
BIND 9.10.0-9.11.21, 9.12.0-9.16.5, 9.17.0-9.17.3 - Reachable Assertion via Crafted Query Packet
Aug 21, 2020
CVSS 7.5
EPSS 0.18
CVE-2020-8622 MEDIUM
BIND 9.0.0-9.11.21, 9.12.0-9.16.5, 9.17.0-9.17.3 - Reachable Assertion via Truncated TSIG Response
Aug 21, 2020
CVSS 6.5
EPSS 0.03
CVE-2020-8621 HIGH
BIND 9.14.0-9.16.5, 9.17.0-9.17.3 - DoS
Aug 21, 2020
CVSS 7.5
EPSS 0.05
CVE-2020-8620 HIGH
BIND 9.15.6-9.16.5 and 9.17.0-9.17.3 - Reachable Assertion via TCP Connection
Aug 21, 2020
CVSS 7.5
EPSS 0.08
CVE-2020-15862 HIGH
Net-SNMP < 5.8.1 - Authenticated Remote Code Execution via EXTEND MIB
Aug 20, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-15861 HIGH
Net-SNMP < 5.7.3 - Privilege Escalation via Symbolic Link Following
Aug 20, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-14356 HIGH
Linux Kernel < 5.7.10 - Null Pointer Dereference in cgroupv2 Subsystem
Aug 19, 2020
CVSS 7.8
EPSS 0.01
CVE-2020-11993 HIGH
Apache HTTP Server 2.4.20-2.4.43 - HTTP Request Smuggling via HTTP/2 Module Logging
Aug 07, 2020
CVSS 7.5
EPSS 0.33
CVE-2020-11984 CRITICAL NUCLEI
Apache HTTP Server - Remote Code Execution
Aug 07, 2020
CVSS 9.8
EPSS 0.76
CVE-2020-8575 MEDIUM
Active IQ Unified Manager < 9.5 - Authenticated Denial of Service
Aug 03, 2020
CVSS 4.4
EPSS 0.00
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV