Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp e-series santricity os controller vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-26049
Jetty is a java based web server and servlet engine. Nonstandard cookie parsing in Jetty may allow an malicious user to smuggle cookies within other cookies, or otherwise perform unintended behavior by tampering with the cookie parsing mechanism. If Jetty sees a cookie VALUE that...
Eclipse Jetty
Eclipse Jetty 12.0.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Debian Debian Linux 12.0
Netapp E-series Santricity Web Services -
Netapp E-series Santricity Unified Manager -
Netapp Active Iq Unified Manager -
Netapp E-series Santricity Os Controller
NA
CVE-2022-21624
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. D...
Oracle Graalvm 20.3.7
Oracle Graalvm 21.3.3
Oracle Graalvm 22.2.0
Oracle Jre 19
Oracle Jre 17.0.4.1
Oracle Jdk 19
Oracle Jdk 17.0.4.1
Oracle Jre 11.0.16.1
Oracle Jdk 11.0.16.1
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Secure Agent -
Netapp E-series Santricity Os Controller
Netapp Santricity Storage Plugin -
NA
CVE-2022-21626
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily expl...
Oracle Graalvm 20.3.7
Oracle Graalvm 21.3.3
Oracle Graalvm 22.2.0
Oracle Jre 11.0.16.1
Oracle Jdk 11.0.16.1
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Secure Agent -
Netapp E-series Santricity Os Controller
Netapp Santricity Storage Plugin -
Netapp Santricity Web Services Proxy -
Azul Zulu 6.49
Azul Zulu 7.56
Azul Zulu 8.64
NA
CVE-2022-21628
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Lightweight HTTP Server). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 2...
Oracle Graalvm 20.3.7
Oracle Graalvm 21.3.3
Oracle Graalvm 22.2.0
Oracle Jre 19
Oracle Jre 17.0.4.1
Oracle Jdk 19
Oracle Jdk 17.0.4.1
Oracle Jre 11.0.16.1
Oracle Jdk 11.0.16.1
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Secure Agent -
Netapp E-series Santricity Os Controller
Netapp Santricity Storage Plugin -
NA
CVE-2022-21618
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JGSS). Supported versions that are affected are Oracle Java SE: 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 21.3.3 and 22.2.0. Easily exploitable vulnerability allows...
Oracle Graalvm 21.3.3
Oracle Graalvm 22.2.0
Oracle Jre 19
Oracle Jre 17.0.4.1
Oracle Jdk 19
Oracle Jdk 17.0.4.1
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Secure Agent -
Netapp E-series Santricity Os Controller
Netapp Santricity Storage Plugin -
Azul Zulu 11.58
Azul Zulu 13.50
Azul Zulu 15.42
Azul Zulu 17.36
Azul Zulu 19.28
NA
CVE-2022-21619
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2....
Oracle Graalvm 20.3.7
Oracle Graalvm 21.3.3
Oracle Graalvm 22.2.0
Oracle Jre 19
Oracle Jre 17.0.4.1
Oracle Jdk 19
Oracle Jdk 17.0.4.1
Oracle Jre 11.0.16.1
Oracle Jdk 11.0.16.1
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Secure Agent -
Netapp E-series Santricity Os Controller 11.70.2
Netapp Santricity Storage Plugin -
NA
CVE-2022-39399
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Networking). Supported versions that are affected are Oracle Java SE: 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to e...
Oracle Graalvm 20.3.7
Oracle Graalvm 21.3.3
Oracle Graalvm 22.2.0
Oracle Jre 19
Oracle Jre 17.0.4.1
Oracle Jdk 19
Oracle Jdk 17.0.4.1
Oracle Jre 11.0.16.1
Oracle Jdk 11.0.16.1
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Unified Manager -
Netapp 7-mode Transition Tool -
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Secure Agent -
Netapp E-series Santricity Os Controller
Netapp Santricity Storage Plugin -
Netapp Santricity Web Services Proxy -
Azul Zulu 11.58
NA
CVE-2022-36879
An issue exists in the Linux kernel up to and including 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp A700s Firmware -
Netapp Active Iq Unified Manager -
Netapp Hci Bootstrap Os -
Netapp E-series Santricity Os Controller
Netapp Aff 8300 Firmware -
Netapp Fas 8300 Firmware -
Netapp Aff 8700 Firmware -
Netapp Fas 8700 Firmware -
Netapp Aff A400 Firmware -
Netapp Fas A400 Firmware -
Netapp Aff A250 Firmware -
Netapp Fas A250 Firmware -
Netapp Fas 500f Firmware -
Netapp Aff 500f Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
2.1
CVSSv2
CVE-2022-23236
E-Series SANtricity OS Controller Software versions 11.40 up to and including 11.70.2 store the LDAP BIND password in plaintext within a file accessible only to privileged users.
Netapp E-series Santricity Os Controller
5.8
CVSSv2
CVE-2022-23237
E-Series SANtricity OS Controller Software 11.x versions up to and including 11.70.2 are vulnerable to host header injection attacks that could allow an malicious user to redirect users to malicious websites.
Netapp E-series Santricity Os Controller
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28254
CVE-2024-32515
CVE-2024-21338
validation
CVE-2024-32522
dos
CVE-2024-2101
CVE-2024-21107
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »