Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp snapcenter server vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2017-15516
NetApp SnapCenter Server versions 1.1 up to and including 2.x are susceptible to a Cross-Site Request Forgery (CSRF) vulnerability which could be used to cause an unintended authenticated action in the user interface.
Netapp Snapcenter Server 1.1
Netapp Snapcenter Server 2.0
7.2
CVSSv3
CVE-2017-15519
Versions of SnapCenter 2.0 up to and including 3.0.1 allow unauthenticated remote malicious users to view and modify backup related data via the Plug-in for NAS File Services. All users are urged to move to version 3.0.1 and perform the mitigation steps or upgrade to 4.0 followin...
Netapp Snapcenter Server
4.8
CVSSv3
CVE-2017-15515
NetApp SnapCenter Server before 4.0 is susceptible to cross site scripting vulnerability that could allow a privileged user to inject arbitrary scripts into the custom secondary policy label field.
Netapp Snapcenter Server
5.3
CVSSv3
CVE-2018-5482
NetApp SnapCenter Server before 4.1 does not set the secure flag for a sensitive cookie in an HTTPS session which can allow the transmission of the cookie in plain text over an unencrypted channel.
Netapp Snapcenter Server
7.3
CVSSv3
CVE-2016-1502
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote malicious users to partially bypass authentication and then list and delete backups via unspecified vectors.
Netapp Snapcenter Server 1.0
8.1
CVSSv3
CVE-2015-7887
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups.
Netapp Snapcenter Server 1.0
7.5
CVSSv3
CVE-2021-35583
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Windows). Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Serve...
Oracle Mysql Server
Netapp Snapcenter -
Netapp Oncommand Insight -
4.9
CVSSv3
CVE-2021-35639
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise My...
Oracle Mysql Server
Netapp Snapcenter -
Netapp Oncommand Insight -
4.9
CVSSv3
CVE-2022-21413
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. S...
Oracle Mysql Server
Netapp Snapcenter -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
4.9
CVSSv3
CVE-2022-21437
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Ser...
Oracle Mysql Server
Netapp Snapcenter -
Netapp Oncommand Insight -
Netapp Active Iq Unified Manager -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »