Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp element software - vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-32765
Hiredis is a minimalistic C client library for the Redis database. In affected versions Hiredis is vulnurable to integer overflow if provided maliciously crafted or corrupted `RESP` `mult-bulk` protocol data. When parsing `multi-bulk` (array-like) replies, hiredis fails to check ...
Redis Hiredis
Debian Debian Linux 9.0
Netapp Management Services For Element Software And Netapp Hci -
3 Github repositories
7
CVSSv3
CVE-2020-29368
An issue exists in __split_huge_pmd in mm/huge_memory.c in the Linux kernel prior to 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check, aka CID-c444eb564fb1.
Linux Linux Kernel
Netapp Cloud Backup -
Netapp Element Software -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Hci Bootstrap Os -
Netapp H410c Firmware -
5.9
CVSSv3
CVE-2017-3140
If named is configured to use Response Policy Zones (RPZ) an error processing some rule types can lead to a condition where BIND will endlessly loop while handling a query. Affects BIND 9.9.10, 9.10.5, 9.11.0->9.11.1, 9.9.10-S1, 9.10.5-S1.
Isc Bind 9.10.5
Isc Bind 9.9.10
Isc Bind
Netapp Data Ontap Edge -
Netapp Oncommand Balance -
Netapp Element Software -
2.7
CVSSv3
CVE-2022-2047
In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenar...
Eclipse Jetty
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Snapcenter -
Netapp Hci Compute Node -
Netapp Solidfire & Hci Storage Node -
Netapp Element Plug-in For Vcenter Server -
Netapp Management Services For Element Software And Netapp Hci -
7.5
CVSSv3
CVE-2022-2048
In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no eno...
Eclipse Jetty
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Snapcenter -
Netapp Hci Compute Node -
Netapp Solidfire & Hci Storage Node -
Netapp Element Plug-in For Vcenter Server -
Netapp Management Services For Element Software And Netapp Hci -
Jenkins Jenkins
8.2
CVSSv3
CVE-2018-3627
Logic bug in Intel Converged Security Management Engine 11.x may allow an malicious user to execute arbitrary code via local privileged access.
Intel Converged Security Management Engine Firmware 11.0
Netapp Element Software Management Node -
4.6
CVSSv3
CVE-2018-19985
The function hso_get_config_data in drivers/net/usb/hso.c in the Linux kernel up to and including 4.19.8 reads if_num from the USB device (as a u8) and uses it to index a small array, resulting in an object out-of-bounds (OOB) read that potentially allows arbitrary read in the ke...
Linux Linux Kernel
Debian Debian Linux 8.0
Netapp Element Software Management Node -
Netapp Active Iq Performance Analytics Services -
6.5
CVSSv3
CVE-2021-38199
fs/nfs/nfs4client.c in the Linux kernel prior to 5.13.4 has incorrect connection-setup ordering, which allows operators of remote NFSv4 servers to cause a denial of service (hanging of mounts) by arranging for those servers to be unreachable during trunking detection.
Linux Linux Kernel
Netapp Hci Bootstrap Os -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Element Software -
Debian Debian Linux 9.0
Debian Debian Linux 11.0
6.5
CVSSv3
CVE-2020-8582
Element Software versions before 12.2 and HCI versions before 1.8P1 are susceptible to a vulnerability which could allow an authenticated user to view sensitive information.
Netapp Hci
Netapp Element Os
7.5
CVSSv3
CVE-2020-8583
Element Software versions before 12.2 and HCI versions before 1.8P1 are susceptible to a vulnerability which could allow an malicious user to discover sensitive information by intercepting its transmission within an https session.
Netapp Hci
Netapp Element Os
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »