Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp active iq unified manager - vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-23235
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions before 9.10P1 are susceptible to a vulnerability which could allow an malicious user to discover cluster, node and Active IQ Unified Manager specific information via AutoSupport telemetry data tha...
Netapp Active Iq Unified Manager 9.10
Netapp Active Iq Unified Manager
7.8
CVSSv3
CVE-2020-8574
Active IQ Unified Manager for Linux versions before 9.6 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service enabled allowing unauthorized code execution to local users.
Netapp Active Iq Unified Manager
4.4
CVSSv3
CVE-2020-8575
Active IQ Unified Manager for VMware vSphere and Windows versions before 9.5 are susceptible to a vulnerability which allows administrative users to cause Denial of Service (DoS).
Netapp Active Iq Unified Manager
4.8
CVSSv3
CVE-2022-23239
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions before 9.11P1 are susceptible to a vulnerability which allows administrative users to perform a Stored Cross-Site Scripting (XSS) attack.
Netapp Active Iq Unified Manager
6.5
CVSSv3
CVE-2022-23240
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions before 9.11P1 are susceptible to a vulnerability which allows unauthorized users to update EMS Subscriptions via unspecified vectors.
Netapp Active Iq Unified Manager
6.5
CVSSv3
CVE-2018-3721
lodash node module prior to 4.17.5 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability via defaultsDeep, merge, and mergeWith functions, which allows a malicious user to modify the prototype of "Object" via __proto__, causing the addition or modif...
Lodash Lodash
Netapp Active Iq Unified Manager -
Netapp System Manager 9.0
3 Github repositories
7
CVSSv3
CVE-2022-28734
Out-of-bounds write when handling split HTTP headers; When handling split HTTP headers, GRUB2 HTTP code accidentally moves its internal data buffer point by one position. This can lead to a out-of-bound write further when parsing the HTTP request, writing a NULL byte past the buf...
Gnu Grub2
Netapp Active Iq Unified Manager -
7.5
CVSSv3
CVE-2023-41105
An issue exists in Python 3.11 up to and including 3.11.4. If a path containing '\0' bytes is passed to os.path.normpath(), the path will be truncated unexpectedly at the first '\0' byte. There are plausible cases in which an application would have rejected a ...
Python Python
Netapp Active Iq Unified Manager -
4.9
CVSSv3
CVE-2020-14725
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Ser...
Oracle Mysql
Netapp Active Iq Unified Manager
5.5
CVSSv3
CVE-2022-26336
A shortcoming in the HMEF package of poi-scratchpad (Apache POI) allows an malicious user to cause an Out of Memory exception. This package is used to read TNEF files (Microsoft Outlook and Microsoft Exchange Server). If an application uses poi-scratchpad to parse TNEF files and ...
Apache Poi
Netapp Active Iq Unified Manager -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »