Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
snapcenter server vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2017-15516
NetApp SnapCenter Server versions 1.1 up to and including 2.x are susceptible to a Cross-Site Request Forgery (CSRF) vulnerability which could be used to cause an unintended authenticated action in the user interface.
Netapp Snapcenter Server 2.0
Netapp Snapcenter Server 1.1
3.5
CVSSv2
CVE-2017-15515
NetApp SnapCenter Server before 4.0 is susceptible to cross site scripting vulnerability that could allow a privileged user to inject arbitrary scripts into the custom secondary policy label field.
Netapp Snapcenter Server
6.4
CVSSv2
CVE-2017-15519
Versions of SnapCenter 2.0 up to and including 3.0.1 allow unauthenticated remote malicious users to view and modify backup related data via the Plug-in for NAS File Services. All users are urged to move to version 3.0.1 and perform the mitigation steps or upgrade to 4.0 followin...
Netapp Snapcenter Server
5
CVSSv2
CVE-2018-5482
NetApp SnapCenter Server before 4.1 does not set the secure flag for a sensitive cookie in an HTTPS session which can allow the transmission of the cookie in plain text over an unencrypted channel.
Netapp Snapcenter Server
7.5
CVSSv2
CVE-2016-1502
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote malicious users to partially bypass authentication and then list and delete backups via unspecified vectors.
Netapp Snapcenter Server 1.0
6.5
CVSSv2
CVE-2015-7887
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups.
Netapp Snapcenter Server 1.0
5
CVSSv2
CVE-2021-35583
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Windows). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Serve...
Oracle Mysql Server
Netapp Oncommand Insight -
Netapp Snapcenter -
6.8
CVSSv2
CVE-2021-35639
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise My...
Oracle Mysql Server
Netapp Oncommand Insight -
Netapp Snapcenter -
4
CVSSv2
CVE-2022-21437
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Ser...
Oracle Mysql Server
Netapp Snapcenter -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
4
CVSSv2
CVE-2022-21438
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Ser...
Oracle Mysql Server
Netapp Snapcenter -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »