Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
active iq unified manager vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-31692
Spring Security, versions 5.7 before 5.7.5 and 5.6 before 5.6.9 could be susceptible to authorization rules bypass via forward or include dispatcher types. Specifically, an application is vulnerable when all of the following are true: The application expects that Spring Security ...
Vmware Spring Security
Netapp Active Iq Unified Manager -
5 Github repositories
NA
CVE-2023-20862
In Spring Security, versions 5.7.x before 5.7.8, versions 5.8.x before 5.8.3, and versions 6.0.x before 6.0.3, the logout support does not properly clean the security context if using serialized versions. Additionally, it is not possible to explicitly save an empty security conte...
Vmware Spring Security
Netapp Active Iq Unified Manager -
1 Github repository
4
CVSSv2
CVE-2018-3721
lodash node module prior to 4.17.5 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability via defaultsDeep, merge, and mergeWith functions, which allows a malicious user to modify the prototype of "Object" via __proto__, causing the addition or modif...
Lodash Lodash
Netapp Active Iq Unified Manager -
Netapp System Manager 9.0
3 Github repositories
NA
CVE-2023-45862
An issue exists in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel prior to 6.2.5. An object could potentially extend beyond the end of an allocation.
Linux Linux Kernel
Netapp Active Iq Unified Manager -
Netapp H410c Firmware -
5.8
CVSSv2
CVE-2021-20220
A flaw was found in Undertow. A regression in the fix for CVE-2020-10687 was found. HTTP request smuggling related to CVE-2017-2666 is possible against HTTP/1.x and HTTP/2 due to permitting invalid characters in an HTTP request. This flaw allows an malicious user to poison a web-...
Redhat Undertow
Netapp Active Iq Unified Manager -
Netapp Oncommand Workflow Automation -
NA
CVE-2021-3800
A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.
Gnome Glib
Debian Debian Linux 10.0
Netapp Active Iq Unified Manager -
4.9
CVSSv2
CVE-2020-25711
A flaw was found in infinispan 10 REST API, where authorization permissions are not checked while performing some server management operations. When authz is enabled, any user with authentication can perform operations like shutting down the server without the ADMIN role.
Infinispan Infinispan
Redhat Data Grid 8.0
Netapp Active Iq Unified Manager -
NA
CVE-2022-3598
LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604, allowing malicious users to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit cfbb883b.
Libtiff Libtiff
Netapp Active Iq Unified Manager -
Debian Debian Linux 10.0
NA
CVE-2022-3626
LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections, tools/tiffcrop.c:7619, allowing malicious users to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is ...
Libtiff Libtiff
Netapp Active Iq Unified Manager -
Debian Debian Linux 10.0
NA
CVE-2020-19189
Buffer Overflow vulnerability in postprocess_terminfo function in tinfo/parse_entry.c:997 in ncurses 6.1 allows remote malicious users to cause a denial of service via crafted command.
Gnu Ncurses 6.1
Netapp Active Iq Unified Manager -
Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »