netapp

2,510 tracked vulnerabilities.

CVE-2024-22259 HIGH
Spring Framework - Open Redirect/SSRF
Mar 16, 2024
CVSS 8.1
EPSS 0.56
CVE-2024-28752 CRITICAL NUCLEI
Apache CXF < 3.5.8 - Server-Side Request Forgery via Aegis DataBinding
Mar 15, 2024
CVSS 9.3
EPSS 0.51
CVE-2024-28757 HIGH
libexpat < 2.6.2 - XML Entity Expansion via External Parser
Mar 10, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-1351 HIGH
MongoDB < 4.4.29, 5.0-5.0.24, 6.0-6.0.13, 7.0-7.0.5 - Improper Certificate Validation
Mar 07, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-25111 HIGH
Squid 3.5.27-6.7 - Denial of Service via HTTP Chunked Decoder Uncontrolled Recursion
Mar 06, 2024
CVSS 8.6
EPSS 0.03
CVE-2024-26462 MEDIUM
MIT Kerberos 5 1.21.2 - Memory Leak in NDR Component
Feb 29, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-26461 HIGH
MIT Kerberos 5 1.21.2 - Memory Leak in k5sealv3.c
Feb 29, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-26458 MEDIUM
MIT Kerberos 5 1.21.2 - Memory Leak in PMAP_RMT
Feb 29, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-22201 HIGH
Eclipse Jetty 9.3.0-9.4.53, 10.0.8-10.0.19, 12.0.0-12.0.5 - Denial of Service via HTTP/2 SSL Connection Leak
Feb 26, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-22019 HIGH
Node.js 18.0.0-18.19.0 and 20.0.0-20.11.0 - Denial of Service via Chunked Encoding
Feb 20, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-1635 HIGH
Netapp Active IQ Unified Manager < 2.3.12.Final - Denial of Service
Feb 19, 2024
CVSS 7.5
EPSS 0.23
CVE-2024-21984 MEDIUM
StorageGRID < 11.7.0.8 - Reflected Cross-Site Scripting
Feb 16, 2024
CVSS 5.9
EPSS 0.00
CVE-2024-21983 MEDIUM
StorageGRID < 11.7.0.8 - Authenticated Denial of Service via Memory Exhaustion
Feb 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-21987 MEDIUM
SnapCenter <5.0 - Privilege Escalation
Feb 16, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-25617 MEDIUM
Squid 3.0-6.4 - Denial of Service via Oversized HTTP Headers
Feb 14, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-1086 HIGH KEV
Linux Kernel 3.15-5.15.149 - Use-After-Free in nf_tables Component
Jan 31, 2024
CVSS 7.8
EPSS 0.85
CVE-2024-21985 HIGH
ONTAP 9 <9.9.1P18-9.13.1P4 - Privilege Escalation
Jan 26, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-20985 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Denial of Service in UDF Component
Jan 16, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-20983 MEDIUM
MySQL Server < 8.0.34 - Authenticated Denial of Service in DML Component
Jan 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-20981 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in DDL Component
Jan 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-20977 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in Optimizer
Jan 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20975 MEDIUM
MySQL < 8.2.0 - Authenticated Denial of Service in Server Optimizer
Jan 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20973 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in Optimizer
Jan 16, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-20971 MEDIUM
MySQL Server < 8.0.35 and 8.2.0 - Authenticated Denial of Service in Optimizer
Jan 16, 2024
CVSS 4.9
EPSS 0.00
CVE-2024-20969 MEDIUM
MySQL Server 8.0.0-8.0.35 and 8.2.0 - Authenticated Denial of Service and Unauthorized Data Modification via DDL
Jan 16, 2024
CVSS 5.5
EPSS 0.00
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV