netapp

2,510 tracked vulnerabilities.

CVE-2018-12538 HIGH
Eclipse Jetty <9.4.8 - Privilege Escalation
Jun 22, 2018
CVSS 8.8
EPSS 0.01
CVE-2018-1333 HIGH
Apache HTTP Server 2.4.18-2.4.30,2.4.33 - Denial of Service via HTTP/2 Request Handling
Jun 18, 2018
CVSS 7.5
EPSS 0.21
CVE-2018-5488 CRITICAL
NetApp SANtricity - Unauthenticated RCE
Jun 13, 2018
CVSS 9.8
EPSS 0.02
CVE-2018-12099 MEDIUM
Grafana < 5.2.0-beta1 - Cross-Site Scripting via Dashboard Links
Jun 11, 2018
CVSS 6.1
EPSS 0.01
CVE-2018-12015 HIGH
Perl <5.26.2 - Path Traversal
Jun 07, 2018
CVSS 7.5
EPSS 0.24
CVE-2018-3721 MEDIUM
lodash < 4.17.5 - Prototype Pollution via __proto__ in defaultsDeep, merge, and mergeWith
Jun 07, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-1000180 HIGH
Bouncy Castle <1.60-1.59 - Info Disclosure
Jun 05, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-5487 CRITICAL
NetApp OnCommand Unified Manager <7.4 - RCE
May 24, 2018
CVSS 9.8
EPSS 0.02
CVE-2018-5485 HIGH
NetApp OnCommand Unified Manager <7.3 - Privilege Escalation
May 24, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-11237 HIGH
glibc < 2.27 - Out-of-bounds Write in AVX-512 mempcpy Implementation
May 18, 2018
CVSS 7.8
EPSS 0.01
CVE-2018-11236 CRITICAL
glibc < 2.27 - Integer Overflow to Stack-Based Buffer Overflow in realpath
May 18, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-11212 MEDIUM
libjpeg 9a and 9d - Denial of Service via Divide-by-Zero in alloc_sarray
May 16, 2018
CVSS 6.5
EPSS 0.02
CVE-2018-8014 CRITICAL
Apache Tomcat 9.0.0.M1-9.0.8, 8.5.0-8.5.31, 8.0.0.RC1-8.0.52, 7.0.4...
May 16, 2018
CVSS 9.8
EPSS 0.61
CVE-2018-1258 HIGH
Spring Security - Incorrect Authorization Bypass via Method Security
May 11, 2018
CVSS 8.8
EPSS 0.00
CVE-2018-1413 MEDIUM
IBM Cognos Analytics 11.0.0.0-11.0.9.9 - Cross-Site Scripting
May 07, 2018
CVSS 5.4
EPSS 0.01
CVE-2018-10549 HIGH
PHP < 5.6.36, 7.0.x < 7.0.30, 7.1.x < 7.1.17, 7.2.x < 7.2.5 - Out-of-bounds Read in exif_read_data
Apr 29, 2018
CVSS 8.8
EPSS 0.02
CVE-2018-10548 HIGH
PHP < 5.6.36, 7.0.x < 7.0.30, 7.1.x < 7.1.17, 7.2.x < 7.2.5 - Denial of Service via LDAP DN Handling
Apr 29, 2018
CVSS 7.5
EPSS 0.53
CVE-2018-10547 MEDIUM
PHP <5.6.36, <7.0.30, <7.1.17, <7.2.5 - XSS
Apr 29, 2018
CVSS 6.1
EPSS 0.17
CVE-2018-10546 HIGH
PHP <5.6.36, <7.0.30, <7.1.17, <7.2.5 - Info Disclosure
Apr 29, 2018
CVSS 7.5
EPSS 0.65
CVE-2018-10545 MEDIUM
PHP < 5.6.35, 7.0.x < 7.0.29, 7.1.x < 7.1.16, 7.2.x < 7.2.4 - Sensitive Info Exposure via FPM
Apr 29, 2018
CVSS 4.7
EPSS 0.00
CVE-2018-5486 HIGH
NetApp OnCommand Unified Manager <7.4 - RCE
Apr 25, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-2846 MEDIUM
Oracle MySQL Server < 5.7.21 - Authenticated Denial of Service in Performance Schema
Apr 19, 2018
CVSS 4.9
EPSS 0.00
CVE-2018-2839 MEDIUM
Oracle MySQL Server < 5.7.21 - Authenticated Denial of Service in DML Subcomponent
Apr 19, 2018
CVSS 4.9
EPSS 0.00
CVE-2018-2826 HIGH
Oracle Java SE <10 - Info Disclosure
Apr 19, 2018
CVSS 8.3
EPSS 0.04
CVE-2018-2825 HIGH
Oracle Java SE 10 - Info Disclosure
Apr 19, 2018
CVSS 8.3
EPSS 0.01
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV