Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp data ontap 9.1 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-5374
NetApp Data ONTAP 9.0 and 9.1 prior to 9.1P1 allows remote authenticated users that own SMB-hosted data to bypass intended sharing restrictions by leveraging improper handling of the owner_rights ACL entry.
Netapp Data Ontap 9.0
Netapp Data Ontap 9.1
3.3
CVSSv3
CVE-2020-8590
Clustered Data ONTAP versions before 9.1P18 and 9.3P12 are susceptible to a vulnerability which could allow an malicious user to discover node names via AutoSupport bundles even when the –remove-private-data parameter is set to true.
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.1
Netapp Clustered Data Ontap 9.3
7.5
CVSSv3
CVE-2019-5491
Clustered Data ONTAP versions before 9.1P15 and 9.3 before 9.3P7 are susceptible to a vulnerability which discloses sensitive information to an unauthenticated user.
Netapp Clustered Data Ontap 9.1
Netapp Clustered Data Ontap 9.3
Netapp Clustered Data Ontap
4.4
CVSSv3
CVE-2018-5497
Clustered Data ONTAP versions before 9.1P16, 9.3P10 and 9.4P5 are susceptible to a vulnerability which discloses sensitive information to an unauthorized user.
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.1
Netapp Clustered Data Ontap 9.3
Netapp Clustered Data Ontap 9.4
6.5
CVSSv3
CVE-2017-7947
NetApp Clustered Data ONTAP prior to 8.3.2P11, 9.0 before P4, and 9.1 before P5 allow malicious users to obtain sensitive password information by leveraging logging of passwords entered non-interactively on the command line.
Netapp Clustered Data Ontap 9.1
Netapp Clustered Data Ontap 9.0
Netapp Clustered Data Ontap 8.3.2
7.5
CVSSv3
CVE-2017-5988
NetApp Clustered Data ONTAP 8.1 up to and including 9.1P1, when NFS or SMB is enabled, allows remote malicious users to cause a denial of service via unspecified vectors.
Netapp Clustered Data Ontap 9.1
Netapp Clustered Data Ontap 8.1
Netapp Clustered Data Ontap 8.2.4
Netapp Clustered Data Ontap 8.2.3
Netapp Clustered Data Ontap 8.2.2
Netapp Clustered Data Ontap 8.2.1
Netapp Clustered Data Ontap 8.3.2
Netapp Clustered Data Ontap 8.3
Netapp Clustered Data Ontap 8.2
Netapp Clustered Data Ontap 8.1.3
Netapp Clustered Data Ontap 8.1.1
Netapp Clustered Data Ontap 9.0
Netapp Clustered Data Ontap 8.3.1
Netapp Clustered Data Ontap 8.1.4
Netapp Clustered Data Ontap 8.1.2
6.5
CVSSv3
CVE-2023-25136
OpenSSH server (sshd) 9.1 introduced a double-free vulnerability during options.kex_algorithms handling. This is fixed in OpenSSH 9.2. The double free can be leveraged, by an unauthenticated remote attacker in the default configuration, to jump to any location in the sshd address...
Openbsd Openssh 9.1
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Netapp Ontap Select Deploy Administration Utility -
Netapp A250 Firmware -
Netapp 500f Firmware -
Netapp C250 Firmware -
10 Github repositories
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1181 Github repositories
28 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started