netapp

2,510 tracked vulnerabilities.

CVE-2018-17182 HIGH
Linux kernel <4.18.8 - Use After Free
Sep 19, 2018
CVSS 7.8
EPSS 0.09
CVE-2018-17082 MEDIUM NUCLEI
PHP <5.6.38, <7.0.32, <7.1.22, <7.2.10 - XSS
Sep 16, 2018
CVSS 6.1
EPSS 0.04
CVE-2018-15919 MEDIUM
OpenSSH 5.9-7.8 - User Enumeration via GSS2 Authentication
Aug 28, 2018
CVSS 5.3
EPSS 0.02
CVE-2018-11776 HIGH KEVNUCLEI
Apache Struts 2 Namespace Redirect OGNL Injection
Aug 22, 2018
CVSS 8.1
EPSS 0.94
CVE-2018-1000656 HIGH
Pallets Project flask <0.12.3 - Info Disclosure
Aug 20, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-1000632 HIGH
dom4j 2.0.0-2.0.3 - XML Injection via Element.addElement or Element.addAttribute
Aug 20, 2018
CVSS 7.5
EPSS 0.02
CVE-2018-15473 MEDIUM
OpenSSH < 7.7 - User Enumeration via Authentication Request Timing
Aug 17, 2018
CVSS 5.3
EPSS 0.90
CVE-2018-15132 HIGH
PHP <5.6.37, <7.0.31, <7.1.20, <7.2.8 - Path Traversal
Aug 07, 2018
CVSS 7.5
EPSS 0.05
CVE-2018-5490 HIGH
Clustered Data ONTAP <8.3 - Info Disclosure
Aug 03, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-5489 MEDIUM
NetApp 7-Mode Transition Tool <2.0 - Privilege Escalation
Aug 03, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-14884 HIGH
PHP <7.0.27, <7.1.13, <7.2.1 - Info Disclosure
Aug 03, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-14883 HIGH
PHP <5.6.37, <7.0.31, <7.1.20, <7.2.8 - Memory Corruption
Aug 03, 2018
CVSS 7.5
EPSS 0.20
CVE-2018-14851 MEDIUM
PHP <5.6.37, <7.0.31, <7.1.20, <7.2.8 - DoS
Aug 02, 2018
CVSS 5.5
EPSS 0.00
CVE-2018-8011 HIGH NUCLEI
Apache HTTP Server <2.4.34 - Use After Free
Jul 18, 2018
CVSS 7.5
EPSS 0.78
CVE-2018-3084 LOW
MySQL Server <8.0.11 - Privilege Escalation
Jul 18, 2018
CVSS 2.8
EPSS 0.00
CVE-2018-3082 LOW
Oracle MySQL <8.0.11 - Info Disclosure
Jul 18, 2018
CVSS 2.7
EPSS 0.00
CVE-2018-3081 MEDIUM
MySQL < 5.5.60, 5.6.40, 5.7.22, 8.0.11 - Authenticated Denial of Service and Data Manipulation
Jul 18, 2018
CVSS 5.0
EPSS 0.00
CVE-2018-3080 MEDIUM
Oracle MySQL < 8.0.11 - Authenticated Denial of Service in Server DDL
Jul 18, 2018
CVSS 4.9
EPSS 0.01
CVE-2018-3079 MEDIUM
Oracle MySQL < 8.0.11 - Authenticated Denial of Service in InnoDB
Jul 18, 2018
CVSS 4.9
EPSS 0.00
CVE-2018-3078 MEDIUM
Oracle MySQL < 8.0.11 - Authenticated Denial of Service in Server DDL
Jul 18, 2018
CVSS 4.9
EPSS 0.00
CVE-2018-3077 MEDIUM
MySQL Server < 5.7.22 and 8.0.11 - Authenticated Denial of Service in DDL Subcomponent
Jul 18, 2018
CVSS 4.9
EPSS 0.00
CVE-2018-3075 MEDIUM
Oracle MySQL <8.0.11 - Privilege Escalation
Jul 18, 2018
CVSS 4.9
EPSS 0.00
CVE-2018-3074 MEDIUM
Oracle MySQL < 8.0.11 - Authenticated Denial of Service in Server Security Roles
Jul 18, 2018
CVSS 5.3
EPSS 0.00
CVE-2018-3073 MEDIUM
Oracle MySQL < 8.0.11 - Authenticated Denial of Service in Server Optimizer
Jul 18, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-3071 MEDIUM
Oracle MySQL < 5.7.22 - Authenticated Denial of Service in Audit Log
Jul 18, 2018
CVSS 4.9
EPSS 0.00
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV