netapp

2,510 tracked vulnerabilities.

CVE-2018-7170 MEDIUM
ntp 4.2.x < 4.2.8p7 and 4.3.x < 4.3.92 - Authenticated Sybil Attack via Ephemeral Association Flood
Mar 06, 2018
CVSS 5.3
EPSS 0.01
CVE-2018-6485 CRITICAL
glibc < 2.26 - Integer Overflow in posix_memalign and memalign Functions
Feb 01, 2018
CVSS 9.8
EPSS 0.01
CVE-2018-5968 HIGH
FasterXML jackson-databind <2.8.11, 2.9.x<2.9.3 - RCE
Jan 22, 2018
CVSS 8.1
EPSS 0.02
CVE-2018-2668 MEDIUM
Oracle MySQL Server < 5.5.58 - Authenticated Denial of Service in Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-2665 MEDIUM
Oracle MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Denial of Service in Server Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-2640 MEDIUM
MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Authenticated Denial of Service in Optimizer
Jan 18, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-2638 HIGH
Oracle Java SE <9.0.1 - Info Disclosure
Jan 18, 2018
CVSS 8.3
EPSS 0.01
CVE-2018-2627 HIGH
Oracle Java SE <9.0.1 - Low Privilege RCE
Jan 18, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-2622 MEDIUM
MySQL Server < 5.5.58, 5.6.38, 5.7.20 - Authenticated Denial of Service in DDL Subcomponent
Jan 18, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-2612 MEDIUM
MySQL <5.6.38 & <5.7.20 - Privilege Escalation
Jan 18, 2018
CVSS 6.5
EPSS 0.00
CVE-2018-2581 MEDIUM
Oracle JDK 7u161, 8u152, 9.0.1 - Unauthenticated Data Exposure via JavaFX
Jan 18, 2018
CVSS 4.7
EPSS 0.01
CVE-2018-2562 HIGH
Oracle MySQL Server < 5.5.58, 5.6.38, 5.7.19 - DoS and Data Manipulation via Partition
Jan 18, 2018
CVSS 7.1
EPSS 0.01
CVE-2017-5123 HIGH
Linux Kernel 4.13 through 4.13.7 - Sandbox Escape via waitid
Nov 02, 2021
CVSS 8.8
EPSS 0.02
CVE-2017-12652 CRITICAL
libpng < 1.6.32 - Improper Input Validation
Jul 10, 2019
CVSS 9.8
EPSS 0.01
CVE-2017-15515 MEDIUM
NetApp SnapCenter Server < 4.0 - Cross-Site Scripting in Secondary Policy Label Field
Mar 04, 2019
CVSS 4.8
EPSS 0.00
CVE-2017-3145 HIGH
BIND 9.0.0-9.12.0rc1 Use-After-Free
Jan 16, 2019
CVSS 7.5
EPSS 0.08
CVE-2017-3140 LOW
BIND 9.9.10, 9.10.5, 9.11.0-9.11.1 - Denial of Service via Response Policy Zone Rule Processing
Jan 16, 2019
CVSS 3.7
EPSS 0.20
CVE-2017-3138 MEDIUM
BIND 9.9.9-9.11.1rc2 - Denial of Service via Null Command String
Jan 16, 2019
CVSS 6.5
EPSS 0.38
CVE-2017-3137 HIGH
BIND 9.9.9-P6 to 9.11.1rc1 - Reachable Assertion via CNAME/DNAME Ordering
Jan 16, 2019
CVSS 7.5
EPSS 0.28
CVE-2017-3136 MEDIUM
BIND 9.8.0-9.8.8-P1, 9.9.0-9.9.9-S8, 9.10.0-9.10.5rc1, 9.11.0-9.11.1rc1 - DoS via DNS64 Query
Jan 16, 2019
CVSS 5.9
EPSS 0.49
CVE-2017-3135 HIGH
BIND 9.8.8-9.11.1b1 DoS via DNS64 and RPZ Query Processing
Jan 16, 2019
CVSS 7.5
EPSS 0.45
CVE-2017-9120 CRITICAL
PHP 7.0.0-7.1.5 - Denial of Service via Integer Overflow in mysqli_real_escape_string
Aug 02, 2018
CVSS 9.8
EPSS 0.02
CVE-2017-9118 HIGH
PHP 7.1.5 - Out-of-bounds Read via preg_replace
Aug 02, 2018
CVSS 7.5
EPSS 0.00
CVE-2017-13652 MEDIUM
NetApp OnCommand Insight < 7.2.0 - Clickjacking via Unintended UI Action
Jul 31, 2018
CVSS 6.5
EPSS 0.00
CVE-2017-7658 CRITICAL
Eclipse Jetty Server <9.2.x-9.4.x - Info Disclosure
Jun 26, 2018
CVSS 9.8
EPSS 0.09
Products
oncommand_insight 971 active_iq_unified_manager 848 oncommand_workflow_automation 743 snapcenter 575 cloud_backup 345 h700s_firmware 289 h300s_firmware 288 h410s_firmware 288 h500s_firmware 288 e-series_santricity_os_controller 242 h410c_firmware 236 steelstore_cloud_integrated_storage 211 solidfire 192 clustered_data_ontap 187 hci_management_node 182 snapmanager 180 ontap_select_deploy_administration_utility 179 oncommand_unified_manager 169 h700e_firmware 149 h300e_firmware 148 h500e_firmware 148 e-series_santricity_storage_manager 140 storage_automation_store 113 solidfire_\&_hci_management_node 103 element_software 100 e-series_santricity_web_services 99 oncommand_balance 83 santricity_unified_manager 77 7-mode_transition_tool 75 oncommand_performance_manager 73
Quick Filters
Critical CVEs With Exploits In CISA KEV