Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp active iq unified manager - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-23235
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions before 9.10P1 are susceptible to a vulnerability which could allow an malicious user to discover cluster, node and Active IQ Unified Manager specific information via AutoSupport telemetry data tha...
Netapp Active Iq Unified Manager 9.10
Netapp Active Iq Unified Manager
409
VMScore
CVE-2020-8574
Active IQ Unified Manager for Linux versions before 9.6 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service enabled allowing unauthorized code execution to local users.
Netapp Active Iq Unified Manager
187
VMScore
CVE-2020-8575
Active IQ Unified Manager for VMware vSphere and Windows versions before 9.5 are susceptible to a vulnerability which allows administrative users to cause Denial of Service (DoS).
Netapp Active Iq Unified Manager
NA
CVE-2022-23239
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions before 9.11P1 are susceptible to a vulnerability which allows administrative users to perform a Stored Cross-Site Scripting (XSS) attack.
Netapp Active Iq Unified Manager
NA
CVE-2022-23240
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions before 9.11P1 are susceptible to a vulnerability which allows unauthorized users to update EMS Subscriptions via unspecified vectors.
Netapp Active Iq Unified Manager
357
VMScore
CVE-2018-3721
lodash node module prior to 4.17.5 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability via defaultsDeep, merge, and mergeWith functions, which allows a malicious user to modify the prototype of "Object" via __proto__, causing the addition or modif...
Lodash Lodash
Netapp Active Iq Unified Manager -
Netapp System Manager 9.0
3 Github repositories
NA
CVE-2022-28734
Out-of-bounds write when handling split HTTP headers; When handling split HTTP headers, GRUB2 HTTP code accidentally moves its internal data buffer point by one position. This can lead to a out-of-bound write further when parsing the HTTP request, writing a NULL byte past the buf...
Gnu Grub2
Netapp Active Iq Unified Manager -
NA
CVE-2023-41105
An issue exists in Python 3.11 up to and including 3.11.4. If a path containing '\0' bytes is passed to os.path.normpath(), the path will be truncated unexpectedly at the first '\0' byte. There are plausible cases in which an application would have rejected a ...
Python Python
Netapp Active Iq Unified Manager -
356
VMScore
CVE-2020-14725
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Ser...
Oracle Mysql
Netapp Active Iq Unified Manager
383
VMScore
CVE-2022-26336
A shortcoming in the HMEF package of poi-scratchpad (Apache POI) allows an malicious user to cause an Out of Memory exception. This package is used to read TNEF files (Microsoft Outlook and Microsoft Exchange Server). If an application uses poi-scratchpad to parse TNEF files and ...
Apache Poi
Netapp Active Iq Unified Manager -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »