Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp element software management - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-26987
Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework versions before 1.3.2 are susceptible to a vulnerability which when successfully exploited could lead to Remote Code Execution. All versions of Element Plug-in for vCenter Server, Managemen...
Vmware Spring Boot
Netapp Solidfire & Hci Management Node
Netapp Management Services For Element Software And Netapp Hci
Netapp Element Plug-in For Vcenter Server
5.5
CVSSv3
CVE-2019-9076
An issue exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elf_read_notes in elf.c.
Gnu Binutils 2.32
Netapp Element Software Management
6.1
CVSSv3
CVE-2022-36033
jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting (XSS) safety. jsoup may incorrectly sanitize HTML including `javascript:` URL expressions, which could allow XSS attacks when a reader subsequently clicks that link. If the non-defau...
Jsoup Jsoup
Netapp Oncommand Workflow Automation -
Netapp Management Services For Element Software -
Netapp Management Services For Netapp Hci -
5.5
CVSSv3
CVE-2018-20449
The hidma_chan_stats function in drivers/dma/qcom/hidma_dbg.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "callback=" lines in a debugfs file.
Linux Linux Kernel 4.14.90
Netapp Element Software Management Node -
7.5
CVSSv3
CVE-2021-38202
fs/nfsd/trace.h in the Linux kernel prior to 5.13.4 might allow remote malicious users to cause a denial of service (out-of-bounds read in strlen) by sending NFS traffic when the trace event framework is being used for nfsd.
Linux Linux Kernel
Netapp Hci Bootstrap Os -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Element Software -
5.5
CVSSv3
CVE-2021-38203
btrfs in the Linux kernel prior to 5.13.4 allows malicious users to cause a denial of service (deadlock) via processes that trigger allocation of new system chunks during times when there is a shortage of free space in the system space_info.
Linux Linux Kernel
Netapp Hci Bootstrap Os -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Element Software -
7.5
CVSSv3
CVE-2021-38201
net/sunrpc/xdr.c in the Linux kernel prior to 5.13.4 allows remote malicious users to cause a denial of service (xdr_set_page_base slab-out-of-bounds access) by performing many NFS 4.2 READ_PLUS operations.
Linux Linux Kernel
Netapp Hci Bootstrap Os -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Element Software -
8.2
CVSSv3
CVE-2018-3627
Logic bug in Intel Converged Security Management Engine 11.x may allow an malicious user to execute arbitrary code via local privileged access.
Intel Converged Security Management Engine Firmware 11.0
Netapp Element Software Management Node -
5.5
CVSSv3
CVE-2019-5489
The mincore() implementation in mm/mincore.c in the Linux kernel up to and including 4.19.13 allowed local malicious users to observe page cache access patterns of other processes on the same system, potentially allowing sniffing of secret information. (Fixing this affects the ou...
Linux Linux Kernel
Netapp Element Software Management Node -
Netapp Active Iq Performance Analytics Services -
1 Github repository
1 Article
5.3
CVSSv3
CVE-2023-2975
Issue summary: The AES-SIV cipher implementation contains a bug that causes it to ignore empty associated data entries which are unauthenticated as a consequence. Impact summary: Applications that use the AES-SIV algorithm and want to authenticate empty data entries as associated...
Openssl Openssl
Netapp Ontap Select Deploy Administration Utility -
Netapp Management Services For Element Software And Netapp Hci -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »