Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp snapcenter - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-1096
SnapCenter versions 4.7 before 4.7P2 and 4.8 before 4.8P1 are susceptible to a vulnerability which could allow a remote unauthenticated malicious user to gain access as an admin user.
Netapp Snapcenter 4.8
Netapp Snapcenter 4.7
6.8
CVSSv2
CVE-2017-15516
NetApp SnapCenter Server versions 1.1 up to and including 2.x are susceptible to a Cross-Site Request Forgery (CSRF) vulnerability which could be used to cause an unintended authenticated action in the user interface.
Netapp Snapcenter Server 2.0
Netapp Snapcenter Server 1.1
NA
CVE-2023-27313
SnapCenter versions 3.x and 4.x before 4.9 are susceptible to a vulnerability which may allow an authenticated unprivileged user to gain access as an admin user.
Netapp Snapcenter
NA
CVE-2023-27316
SnapCenter versions 4.8 up to and including 4.9 are susceptible to a vulnerability which may allow an authenticated SnapCenter Server user to become an admin user on a remote system where a SnapCenter plug-in has been installed.
Netapp Snapcenter
NA
CVE-2022-38732
SnapCenter versions before 4.7 shipped without Content Security Policy (CSP) implemented which could allow certain types of attacks that otherwise would be prevented.
Netapp Snapcenter
2.1
CVSSv2
CVE-2022-23234
SnapCenter versions before 4.5 are susceptible to a vulnerability which could allow a local authenticated malicious user to discover plaintext HANA credentials.
Netapp Snapcenter
5
CVSSv2
CVE-2018-5482
NetApp SnapCenter Server before 4.1 does not set the secure flag for a sensitive cookie in an HTTPS session which can allow the transmission of the cookie in plain text over an unencrypted channel.
Netapp Snapcenter Server
3.5
CVSSv2
CVE-2017-15515
NetApp SnapCenter Server before 4.0 is susceptible to cross site scripting vulnerability that could allow a privileged user to inject arbitrary scripts into the custom secondary policy label field.
Netapp Snapcenter Server
6.4
CVSSv2
CVE-2017-15519
Versions of SnapCenter 2.0 up to and including 3.0.1 allow unauthenticated remote malicious users to view and modify backup related data via the Plug-in for NAS File Services. All users are urged to move to version 3.0.1 and perform the mitigation steps or upgrade to 4.0 followin...
Netapp Snapcenter Server
6.8
CVSSv2
CVE-2021-35537
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. S...
Oracle Mysql
Netapp Oncommand Insight -
Netapp Snapcenter -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »