Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
active iq vulnerabilities and exploits
(subscribe to this query)
6.3
CVSSv3
CVE-2023-20862
In Spring Security, versions 5.7.x before 5.7.8, versions 5.8.x before 5.8.3, and versions 6.0.x before 6.0.3, the logout support does not properly clean the security context if using serialized versions. Additionally, it is not possible to explicitly save an empty security conte...
Vmware Spring Security
Netapp Active Iq Unified Manager -
1 Github repository
6.5
CVSSv3
CVE-2020-19187
Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1100 in ncurses 6.1 allows remote malicious users to cause a denial of service via crafted command.
Gnu Ncurses 6.1
Netapp Active Iq Unified Manager -
6.5
CVSSv3
CVE-2020-19188
Buffer Overflow vulnerability in fmt_entry function in progs/dump_entry.c:1116 in ncurses 6.1 allows remote malicious users to cause a denial of service via crafted command.
Gnu Ncurses 6.1
Netapp Active Iq Unified Manager -
3.3
CVSSv3
CVE-2018-20855
An issue exists in the Linux kernel prior to 4.18.7. In create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never initialized, resulting in a leak of stack memory to userspace.
Linux Linux Kernel
Opensuse Leap 15.0
Opensuse Leap 15.1
Netapp Active Iq Performance Analytics Services -
Netapp Active Iq Unified Manager
Netapp Data Availability Services -
Netapp Element Software -
5.5
CVSSv3
CVE-2023-45862
An issue exists in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel prior to 6.2.5. An object could potentially extend beyond the end of an allocation.
Linux Linux Kernel
Netapp Active Iq Unified Manager -
Netapp H410c Firmware -
6.5
CVSSv3
CVE-2020-25711
A flaw was found in infinispan 10 REST API, where authorization permissions are not checked while performing some server management operations. When authz is enabled, any user with authentication can perform operations like shutting down the server without the ADMIN role.
Infinispan Infinispan
Redhat Data Grid 8.0
Netapp Active Iq Unified Manager -
6.5
CVSSv3
CVE-2022-3598
LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing malicious users to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit cfbb883b.
Libtiff Libtiff
Netapp Active Iq Unified Manager -
Debian Debian Linux 10.0
6.5
CVSSv3
CVE-2022-3626
LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing malicious users to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is ...
Libtiff Libtiff
Netapp Active Iq Unified Manager -
Debian Debian Linux 10.0
4.8
CVSSv3
CVE-2021-20220
A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was found. HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an malicious user to poison a web-...
Redhat Undertow
Netapp Active Iq Unified Manager -
Netapp Oncommand Workflow Automation -
6.5
CVSSv3
CVE-2018-3721
lodash node module prior to 4.17.5 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability via defaultsDeep, merge, and mergeWith functions, which allows a malicious user to modify the prototype of "Object" via __proto__, causing the addition or modif...
Lodash Lodash
Netapp Active Iq Unified Manager -
Netapp System Manager 9.0
3 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »