netapp

2,510 tracked vulnerabilities.

CVE-2020-14547 MEDIUM
MySQL Server <= 5.7.30 and <= 8.0.20 - Authenticated Denial of Service in Optimizer
Jul 15, 2020
CVSS 4.9
EPSS 0.00
CVE-2020-14540 MEDIUM
MySQL Server <= 5.7.30 and <= 8.0.20 - Authenticated Denial of Service in Server: DML
Jul 15, 2020
CVSS 4.9
EPSS 0.00
CVE-2020-14539 MEDIUM
MySQL Server <= 5.6.48, <= 5.7.30, <= 8.0.20 - Denial of Service in Optimizer
Jul 15, 2020
CVSS 6.5
EPSS 0.01
CVE-2020-13935 HIGH NUCLEI
Apache Tomcat 7.0.27-7.0.104, 8.5.0-8.5.56, 9.0.0.M1-9.0.36, 10.0.0-M1-M6 DoS via WebSocket Frame Payload Length
Jul 14, 2020
CVSS 7.5
EPSS 0.92
CVE-2020-13934 HIGH
Apache Tomcat 8.5.1-8.5.56, 9.0.0.M5-9.0.36, 10.0.0-M1-10.0.0-M6 - Denial of Service via h2c Direct Connection
Jul 14, 2020
CVSS 7.5
EPSS 0.23
CVE-2020-15523 HIGH
Python 3.6-3.6.10, 3.7-3.7.8, 3.8-3.8.4rc1, 3.9-3.9.0b4 Windows - Uncontrolled Search Path
Jul 04, 2020
CVSS 7.8
EPSS 0.00
CVE-2020-14058 HIGH
Squid 3.1-3.5.27 and 4.x < 4.12 and 5.x < 5.0.3 - Denial of Service via TLS Certificate Validation
Jun 30, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-14145 MEDIUM
OpenSSH 5.7-8.4 - Information Leak via Algorithm Negotiation
Jun 29, 2020
CVSS 5.9
EPSS 0.01
CVE-2020-14002 MEDIUM
PuTTY 0.68-0.73 - Information Leak via Algorithm Negotiation
Jun 29, 2020
CVSS 5.9
EPSS 0.01
CVE-2020-8573 MEDIUM
NetApp HCI H610C H615C H610S BMC - Use of Hard-coded Credentials
Jun 29, 2020
CVSS 6.5
EPSS 0.00
CVE-2020-11996 HIGH
Apache Tomcat <10.0.0-M6, <9.0.36, <8.5.56 - DoS
Jun 26, 2020
CVSS 7.5
EPSS 0.45
CVE-2020-10727 MEDIUM
ActiveMQ Artemis <2.12.0 - Info Disclosure
Jun 26, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-15025 MEDIUM
ntp 4.2.8-4.2.8p14 and 4.3.x < 4.3.101 - Denial of Service via CMAC Key Memory Leak
Jun 24, 2020
CVSS 4.4
EPSS 0.03
CVE-2020-14968 CRITICAL
jsrsasign < 8.0.17 - Signature Validation Bypass via Prepended Null Bytes
Jun 22, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-14967 CRITICAL
jsrsasign <8.0.18 - Memory Corruption
Jun 22, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-14966 HIGH
jsrsasign < 8.0.18 - Cryptographic Signature Verification Bypass via ECDSA Integer Length Malleability
Jun 22, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-8619 MEDIUM
ISC BIND 9.11.14-9.11.19, 9.14.9-9.14.12, 9.16.0-9.16.3 - Denial of Service via Empty Non-Terminal Entry
Jun 17, 2020
CVSS 4.9
EPSS 0.07
CVE-2020-8618 MEDIUM
BIND >=9.16.0 <9.16.3 - Denial of Service via Zone Transfer Assertion Failure
Jun 17, 2020
CVSS 4.9
EPSS 0.01
CVE-2020-14195 HIGH
jackson-databind 2.9.0-2.9.10.4 - Deserialization of Untrusted Data via org.jsecurity.realm.jndi.JndiRealmFactory
Jun 16, 2020
CVSS 8.1
EPSS 0.07
CVE-2020-4051 LOW
Dijit < 1.11.11, 1.12.0-1.12.8, 1.13.0-1.13.7, 1.14.0-1.14.6, 1.15.0-1.15.3, 1.16.0-1.16.2 - XSS in Editor LinkDialog
Jun 15, 2020
CVSS 3.7
EPSS 0.00
CVE-2020-14155 MEDIUM
PCRE < 8.44 - Integer Overflow via Large Number After (?C Substring
Jun 15, 2020
CVSS 5.3
EPSS 0.00
CVE-2020-14060 HIGH
jackson-databind 2.9.0-2.9.10.4 - Deserialization of Untrusted Data via apache/drill JNDIConnectionPool
Jun 14, 2020
CVSS 8.1
EPSS 0.09
CVE-2020-14062 HIGH
FasterXML jackson-databind 2.9.0-2.9.10.4 - Deserialization of Untrusted Data via xalan2 JNDIConnectionPool
Jun 14, 2020
CVSS 8.1
EPSS 0.10
CVE-2020-14061 HIGH
jackson-databind 2.9.0-2.9.10.4 - Deserialization of Untrusted Data via Oracle AQjms Gadgets
Jun 14, 2020
CVSS 8.1
EPSS 0.06
CVE-2020-10732 LOW
Linux Kernel < 3.16.85 - Uninitialized Memory Exposure via Userspace Core Dump
Jun 12, 2020
CVSS 3.3
EPSS 0.00
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV