netapp

2,510 tracked vulnerabilities.

CVE-2019-11358 MEDIUM
jQuery < 3.4.0 - Prototype Pollution via jQuery.extend
Apr 20, 2019
CVSS 6.1
EPSS 0.02
CVE-2019-11035 CRITICAL
PHP 7.1.x < 7.1.28, 7.2.x < 7.2.17, 7.3.x < 7.3.4 - Out-of-bounds Read in EXIF Extension
Apr 18, 2019
CVSS 9.1
EPSS 0.03
CVE-2019-11034 CRITICAL
PHP 7.1.x < 7.1.28, 7.2.x < 7.2.17, 7.3.x < 7.3.4 - Out-of-bounds Read in EXIF Extension
Apr 18, 2019
CVSS 9.1
EPSS 0.03
CVE-2019-11068 CRITICAL
libxslt <= 1.1.33 - Protection Mechanism Bypass via Crafted URL
Apr 10, 2019
CVSS 9.8
EPSS 0.01
CVE-2019-0211 HIGH KEV
Apache HTTP Server 2.4.17-2.4.38 - Use-After-Free in Scoreboard
Apr 08, 2019
CVSS 7.8
EPSS 0.90
CVE-2019-0217 HIGH
Apache HTTP Server < 2.4.38 - Authentication Bypass via Race Condition in mod_auth_digest
Apr 08, 2019
CVSS 7.5
EPSS 0.43
CVE-2019-9946 HIGH
CNCF CNI 0.7.4 - Privilege Escalation
Apr 02, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-0222 HIGH
Apache ActiveMQ <5.15.8 - Info Disclosure
Mar 28, 2019
CVSS 7.5
EPSS 0.09
CVE-2019-10125 CRITICAL
Linux kernel <5.0.4 - Use After Free
Mar 27, 2019
CVSS 9.8
EPSS 0.03
CVE-2019-7612 CRITICAL
Logstash <5.6.15-6.6.1 - Info Disclosure
Mar 25, 2019
CVSS 9.8
EPSS 0.00
CVE-2019-3874 MEDIUM
Linux Kernel 3.10.1-3.10.107 - Denial of Service via SCTP Socket Buffer
Mar 25, 2019
CVSS 6.5
EPSS 0.00
CVE-2019-3861 MEDIUM
libssh2 < 1.8.1 - Out-of-bounds Read via SSH Packet Padding Length
Mar 25, 2019
CVSS 5.0
EPSS 0.02
CVE-2019-3860 MEDIUM
libssh2 < 1.8.1 - Out-of-bounds Read in SFTP Packet Parser
Mar 25, 2019
CVSS 5.0
EPSS 0.01
CVE-2019-3857 HIGH
libssh2 < 1.8.1 - Remote Code Execution via SSH_MSG_CHANNEL_REQUEST Packet Parsing
Mar 25, 2019
CVSS 8.8
EPSS 0.05
CVE-2019-3856 HIGH
libssh2 < 1.8.1 - Remote Code Execution via Keyboard Prompt Request Parsing
Mar 25, 2019
CVSS 8.8
EPSS 0.05
CVE-2019-3863 HIGH
libssh2 < 1.8.1 - Integer Overflow via Keyboard Interactive Response
Mar 25, 2019
CVSS 7.5
EPSS 0.09
CVE-2019-9924 HIGH
Bash < 4.4 - Missing Authorization via BASH_CMDS Manipulation
Mar 22, 2019
CVSS 7.8
EPSS 0.00
CVE-2019-3858 MEDIUM
libssh2 < 1.8.1 - Out-of-bounds Read via SFTP Packet
Mar 21, 2019
CVSS 5.0
EPSS 0.02
CVE-2019-3855 HIGH
libssh2 < 1.8.1 - Remote Code Execution via Integer Overflow in Packet Handling
Mar 21, 2019
CVSS 8.8
EPSS 0.16
CVE-2019-5490 CRITICAL
NetApp Service Processor - Command Injection
Mar 21, 2019
CVSS 9.8
EPSS 0.01
CVE-2019-9898 CRITICAL
PuTTY < 0.71 - Use of Insufficiently Random Values in Cryptographic Operations
Mar 21, 2019
CVSS 9.8
EPSS 0.04
CVE-2019-9897 HIGH
PuTTY < 0.71 - Denial of Service via Terminal Input
Mar 21, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-9894 HIGH
PuTTY < 0.71 - Remote Code Execution via RSA Key Exchange
Mar 21, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-7222 MEDIUM
Linux kernel <4.20.5 - Info Disclosure
Mar 21, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-7221 HIGH
Linux kernel <4.20.5 - Use After Free
Mar 21, 2019
CVSS 7.8
EPSS 0.00
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV