Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp clustered data ontap - vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-5610
In FreeBSD 12.0-STABLE before r350637, 12.0-RELEASE prior to 12.0-RELEASE-p9, 11.3-STABLE before r350638, 11.3-RELEASE prior to 11.3-RELEASE-p2, and 11.2-RELEASE prior to 11.2-RELEASE-p13, the bsnmp library is not properly validating the submitted length from a type-length-value ...
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.3
Netapp Clustered Data Ontap -
7.8
CVSSv2
CVE-2019-5611
In FreeBSD 12.0-STABLE before r350828, 12.0-RELEASE prior to 12.0-RELEASE-p10, 11.3-STABLE before r350829, 11.3-RELEASE prior to 11.3-RELEASE-p3, and 11.2-RELEASE prior to 11.2-RELEASE-p14, a missing check in the function to arrange data in a chain of mbufs could cause data retur...
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.3
Netapp Clustered Data Ontap -
7.8
CVSSv2
CVE-2019-5612
In FreeBSD 12.0-STABLE before r351264, 12.0-RELEASE prior to 12.0-RELEASE-p10, 11.3-STABLE before r351265, 11.3-RELEASE prior to 11.3-RELEASE-p3, and 11.2-RELEASE prior to 11.2-RELEASE-p14, the kernel driver for /dev/midistat implements a read handler that is not thread-safe. A m...
Freebsd Freebsd 11.2
Freebsd Freebsd 12.0
Freebsd Freebsd 11.3
Netapp Clustered Data Ontap -
5
CVSSv2
CVE-2022-30556
Apache HTTP Server 2.4.53 and previous versions may return lengths to applications calling r:wsread() that point past the end of the storage allocated for the buffer.
Apache Http Server
Netapp Clustered Data Ontap -
Fedoraproject Fedora 35
Fedoraproject Fedora 36
5
CVSSv2
CVE-2022-26377
Inconsistent Interpretation of HTTP Requests ('HTTP Request Smuggling') vulnerability in mod_proxy_ajp of Apache HTTP Server allows an malicious user to smuggle requests to the AJP server it forwards requests to. This issue affects Apache HTTP Server Apache HTTP Server ...
Apache Http Server
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Clustered Data Ontap -
1 Github repository
1 Article
5
CVSSv2
CVE-2022-29404
In Apache HTTP Server 2.4.53 and previous versions, a malicious request to a lua script that calls r:parsebody(0) may cause a denial of service due to no default limit on possible input size.
Apache Http Server
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Clustered Data Ontap -
5
CVSSv2
CVE-2022-28614
The ap_rwrite() function in Apache HTTP Server 2.4.53 and previous versions may read unintended memory if an attacker can cause the server to reflect very large input using ap_rwrite() or ap_rputs(), such as with mod_luas r:puts() function. Modules compiled and distributed separa...
Apache Http Server
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Clustered Data Ontap -
6.4
CVSSv2
CVE-2022-28615
Apache HTTP Server 2.4.53 and previous versions may crash or disclose information due to a read beyond bounds in ap_strcmp_match() when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or...
Apache Http Server
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Clustered Data Ontap -
1.9
CVSSv2
CVE-2019-3901
A race condition in perf_event_open() allows local malicious users to leak sensitive data from setuid programs. As no relevant locks (in particular the cred_guard_mutex) are held during the ptrace_may_access() call, it is possible for the specified target task to perform an execv...
Linux Linux Kernel
Debian Debian Linux 8.0
Netapp Vasa Provider For Clustered Data Ontap
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Snapprotect -
Netapp Active Iq Unified Manager For Vmware Vsphere
Netapp Virtual Storage Console For Vmware Vsphere
Netapp Storage Replication Adapter For Clustered Data Ontap For Vmware Vsphere
Netapp Cn1610 Firmware -
NA
CVE-2023-3107
A set of carefully crafted ipv6 packets can trigger an integer overflow in the calculation of a fragment reassembled packet's payload length field. This allows an malicious user to trigger a kernel panic, resulting in a denial of service.
Freebsd Freebsd 12.4
Freebsd Freebsd 13.1
Freebsd Freebsd 13.2
Netapp Clustered Data Ontap 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »