Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp ontap select deploy utility vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-16599
A Null Pointer Dereference vulnerability exists in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.35, in _bfd_elf_get_symbol_version_string, as demonstrated in nm-new, that can cause a denial of service via a crafted file.
Gnu Binutils 2.35
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire -
Netapp Hci Management Node -
7
CVSSv3
CVE-2022-26488
In Python prior to 3.10.3 on Windows, local users can gain privileges because the search path is inadequately secured. The installer may allow a local malicious user to add user-writable directories to the system search path. To exploit, an administrator must have installed Pytho...
Python Python
Python Python 3.11.0
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager -
5.3
CVSSv3
CVE-2022-39046
An issue exists in the GNU C Library (glibc) 2.36. When the syslog function is passed a crafted input string larger than 1024 bytes, it reads uninitialized memory from the heap and prints it to the target log file, potentially revealing a portion of the contents of the heap.
Gnu Glibc 2.36
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
Netapp Ontap Select Deploy Administration Utility -
7.5
CVSSv3
CVE-2022-25844
The package angular after 1.7.0 are vulnerable to Regular Expression Denial of Service (ReDoS) by providing a custom locale rule that makes it possible to assign the parameter in posPre: ' '.repeat() of NUMBER_FORMATS.PATTERNS[1].posPre with a very high value. **Note:**...
Angularjs Angular
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Ontap Select Deploy Administration Utility -
1 Github repository
5.5
CVSSv3
CVE-2022-48064
GNU Binutils prior to 2.40 exists to contain an excessive memory consumption vulnerability via the function bfd_dwarf2_find_nearest_line_with_alt at dwarf2.c. The attacker could supply a crafted ELF file and cause a DNS attack.
Gnu Binutils
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Netapp Ontap Select Deploy Administration Utility -
5.5
CVSSv3
CVE-2022-48065
GNU Binutils prior to 2.40 exists to contain a memory leak vulnerability var the function find_abstract_instance in dwarf2.c.
Gnu Binutils
Netapp Ontap Select Deploy Administration Utility -
Fedoraproject Fedora 38
Fedoraproject Fedora 39
7.5
CVSSv3
CVE-2022-35737
SQLite 1.0.12 up to and including 3.39.x prior to 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API.
Sqlite Sqlite
Netapp Ontap Select Deploy Administration Utility -
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
1 Github repository
1 Article
5.5
CVSSv3
CVE-2020-16592
A use after free issue exists in the Binary File Descriptor (BFD) library (aka libbfd) in GNU Binutils 2.34 in bfd_hash_lookup, as demonstrated in nm-new, that can cause a denial of service via a crafted file.
Gnu Binutils 2.34
Netapp Ontap Select Deploy Administration Utility -
Fedoraproject Fedora 32
Fedoraproject Fedora 33
7.5
CVSSv3
CVE-2020-36332
A flaw was found in libwebp in versions prior to 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability.
Webmproject Libwebp
Redhat Enterprise Linux 8.0
Debian Debian Linux 10.0
Netapp Ontap Select Deploy Administration Utility -
6.1
CVSSv3
CVE-2021-31879
GNU Wget up to and including 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007.
Gnu Wget
Broadcom Brocade Fabric Operating System Firmware -
Netapp Cloud Backup -
Netapp Ontap Select Deploy Administration Utility -
Netapp A250 Firmware -
Netapp 500f Firmware -
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »