netapp
2,510 tracked vulnerabilities.
CVE-2019-5497
CRITICAL
NetApp AFF A700s BMC - Command Injection
Jul 01, 2019
CVSS 9.8
EPSS 0.01
CVE-2019-13118
MEDIUM
libxslt 1.1.33 - Type Confusion in Number Formatting
Jul 01, 2019
CVSS 5.3
EPSS 0.01
CVE-2019-10126
CRITICAL
Linux Kernel 4.2-4.4.185 - Heap-based Buffer Overflow in mwifiex_uap_parse_tail_ies
Jun 14, 2019
CVSS 9.8
EPSS 0.03
CVE-2019-3888
CRITICAL
Undertow < 2.0.21 - Sensitive Information Exposure in Log Files
Jun 12, 2019
CVSS 9.8
EPSS 0.01
CVE-2019-10160
CRITICAL
Python 2.7.0-2.7.16, 3.5, 3.6, 3.7, 3.8.0a4-3.8.0b1 - URL Parsing Security Regression
Jun 07, 2019
CVSS 9.8
EPSS 0.01
CVE-2019-12615
HIGH
Linux Kernel < 4.14.130 - Denial of Service via Unchecked kstrdup_const in get_vdev_port_node_info
Jun 03, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-3846
HIGH
Linux Kernel 3.0-3.16.69 - Heap-based Buffer Overflow in mwifiex Wireless Module
Jun 03, 2019
CVSS 8.8
EPSS 0.01
CVE-2019-5436
HIGH
libcurl 7.19.4-7.64.1 - Heap-based Buffer Overflow in TFTP Receiving Code
May 28, 2019
CVSS 7.8
EPSS 0.15
CVE-2019-0201
MEDIUM
Apache ZooKeeper 1.0.0-3.4.13 and 3.5.0-alpha-3.5.4-beta - Unauthenticated Information Disclosure via getACL() Command
May 23, 2019
CVSS 5.9
EPSS 0.00
CVE-2019-8936
HIGH
Netapp Clustered Data Ontap < 9.2 - NULL Pointer Dereference
May 15, 2019
CVSS 7.5
EPSS 0.24
CVE-2019-5496
HIGH
NetApp OnCommand Insight < 7.3.5 - Cleartext Transmission of Sensitive Information
May 10, 2019
CVSS 7.5
EPSS 0.00
CVE-2019-5495
HIGH
OnCommand Unified Manager < 9.5 - Information Disclosure via Missing HTTP Security Headers
May 10, 2019
CVSS 7.5
EPSS 0.00
CVE-2019-5494
HIGH
OnCommand Unified Manager 7-Mode < 5.2.4 - Cleartext Transmission of Sensitive Information
May 10, 2019
CVSS 7.5
EPSS 0.00
CVE-2019-11815
HIGH
Linux kernel <5.0.8 - Use After Free
May 08, 2019
CVSS 8.1
EPSS 0.01
CVE-2019-5492
HIGH
Element Plug-in for vCenter Server <4.2.3 - Info Disclosure
Apr 29, 2019
CVSS 7.5
EPSS 0.00
CVE-2019-3844
HIGH
systemd < 242 - Privilege Escalation via DynamicUser SUID Binary Execution
Apr 26, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-3843
HIGH
systemd < 242 - Improper Privilege Management via DynamicUser Service SUID/SGID Binary
Apr 26, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-3900
HIGH
Linux Kernel <= 5.1-rc6 - Denial of Service via Infinite Loop in vhost_net
Apr 25, 2019
CVSS 7.7
EPSS 0.00
CVE-2019-3882
MEDIUM
Linux Kernel 3.10 4.14 4.18 - Denial of Service via vfio Interface Memory Exhaustion
Apr 24, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-11486
HIGH
Linux Kernel <5.0.8 - Info Disclosure
Apr 23, 2019
CVSS 7.0
EPSS 0.00
CVE-2019-10247
MEDIUM
Eclipse Jetty <=9.4.16 - Sensitive Information Exposure via 404 Error Handler
Apr 22, 2019
CVSS 5.3
EPSS 0.03
CVE-2019-10246
MEDIUM
Eclipse Jetty 9.2.27, 9.3.26, 9.4.16 - Exposure of Sensitive Information via Directory Listing
Apr 22, 2019
CVSS 5.3
EPSS 0.03
CVE-2019-3901
MEDIUM
Linux Kernel < 4.8 - Information Disclosure via Race Condition in perf_event_open()
Apr 22, 2019
CVSS 4.7
EPSS 0.00
CVE-2019-11244
MEDIUM
Kubernetes 1.8.0-1.14.0 - Sensitive Information Exposure via World-Writable Cache Directory
Apr 22, 2019
CVSS 5.0
EPSS 0.00
CVE-2019-11243
HIGH
Kubernetes v1.12.0-v1.12.4,v1.13.0 - Info Disclosure
Apr 22, 2019
CVSS 8.1
EPSS 0.00
Products
oncommand_insight 971
active_iq_unified_manager 848
oncommand_workflow_automation 743
snapcenter 575
cloud_backup 345
h700s_firmware 289
h300s_firmware 288
h410s_firmware 288
h500s_firmware 288
e-series_santricity_os_controller 242
h410c_firmware 236
steelstore_cloud_integrated_storage 211
solidfire 192
clustered_data_ontap 187
hci_management_node 182
snapmanager 180
ontap_select_deploy_administration_utility 179
oncommand_unified_manager 169
h700e_firmware 149
h300e_firmware 148
h500e_firmware 148
e-series_santricity_storage_manager 140
storage_automation_store 113
solidfire_\&_hci_management_node 103
element_software 100
e-series_santricity_web_services 99
oncommand_balance 83
santricity_unified_manager 77
7-mode_transition_tool 75
oncommand_performance_manager 73
Quick Filters