Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp snapprotect - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-20839
systemd 242 changes the VT1 mode upon a logout, which allows malicious users to read cleartext passwords in certain circumstances, such as watching a shutdown, or using Ctrl-Alt-F1 and Ctrl-Alt-F2. This occurs because the KDGKBMODE (aka current keyboard mode) check is mishandled.
Systemd Project Systemd 242
Netapp Cn1610 Firmware -
Netapp Solidfire \\& Hci Management Node -
Netapp Snapprotect -
1 Github repository
9.8
CVSSv3
CVE-2019-10125
An issue exists in aio_poll() in fs/aio.c in the Linux kernel up to and including 5.0.4. A file may be released by aio_poll_wake() if an expected event is triggered immediately (e.g., by the close of a pair of pipes) after the return of vfs_poll(), and this will cause a use-after...
Linux Linux Kernel
Linux Linux Kernel 5.1
Netapp Active Iq Unified Manager
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Solidfire -
Netapp Cn1610 Firmware -
7.8
CVSSv3
CVE-2019-9162
In the Linux kernel prior to 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module has insufficient ASN.1 length checks (aka an array index error), making out-of-bounds read and write operations possible, leading to an OOPS or local privilege escalation. Thi...
Linux Linux Kernel
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Solidfire -
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Netapp Cn1610 Firmware -
1 EDB exploit
4 Github repositories
7.8
CVSSv3
CVE-2018-20669
An issue where a provided address with access_ok() is not checked exists in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel up to and including 4.19.13. A local attacker can craft a malicious IOCTL function call to overwrite arbitrary ...
Linux Linux Kernel
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Cn1610 Firmware -
1 Article
7.8
CVSSv3
CVE-2019-3844
It exists that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which would allow to create binaries owned by the service transient group with the setgid bit set. A local attacker may use this flaw to access resources...
Systemd Project Systemd
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Cn1610 Firmware -
1 EDB exploit
7.5
CVSSv3
CVE-2019-9003
In the Linux kernel prior to 4.20.5, attackers can trigger a drivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arranging for certain simultaneous execution of the code, as demonstrated by a "service ipmievd restart" loop.
Linux Linux Kernel
Linux Linux Kernel 5.0
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Solidfire -
Netapp Cn1610 Firmware -
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Opensuse Leap 15.0
7.8
CVSSv3
CVE-2019-3843
It exists that a systemd service that uses DynamicUser property can create a SUID/SGID binary that would be allowed to run as the transient service UID/GID even after the service is terminated. A local attacker may use this flaw to access resources that will be owned by a potenti...
Systemd Project Systemd
Fedoraproject Fedora 30
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Cn1610 Firmware -
1 EDB exploit
8.1
CVSSv3
CVE-2015-8960
The TLS protocol 1.2 and previous versions supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCertificateType but does not directly document the ability to compute the master secret in certain situations with a client secret key and ser...
Ietf Transport Layer Security
Netapp Snap Creator Framework -
Netapp Data Ontap Edge -
Netapp Snapdrive -
Netapp Snapmanager -
Netapp Smi-s Provider -
Netapp Host Agent -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire \\& Hci Management Node -
Netapp Snapprotect -
Netapp Oncommand Shift -
Netapp Plug-in For Symantec Netbackup -
Netapp System Setup -
7
CVSSv3
CVE-2019-11486
The Siemens R3964 line discipline driver in drivers/tty/n_r3964.c in the Linux kernel prior to 5.0.8 has multiple race conditions.
Linux Linux Kernel
Debian Debian Linux 9.0
Opensuse Leap 42.3
Opensuse Leap 15.1
Netapp Active Iq -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Vasa Provider For Clustered Data Ontap 9.7
Netapp Storage Replication Adapter For Clustered Data Ontap 9.7
Netapp Virtual Storage Console 9.7
4.7
CVSSv3
CVE-2019-3901
A race condition in perf_event_open() allows local malicious users to leak sensitive data from setuid programs. As no relevant locks (in particular the cred_guard_mutex) are held during the ptrace_may_access() call, it is possible for the specified target task to perform an execv...
Linux Linux Kernel
Debian Debian Linux 8.0
Netapp Vasa Provider For Clustered Data Ontap
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Active Iq Unified Manager For Vmware Vsphere
Netapp Virtual Storage Console For Vmware Vsphere
Netapp Storage Replication Adapter For Clustered Data Ontap For Vmware Vsphere
Netapp Cn1610 Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »