Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp element plug-in for vcenter server - vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-5492
Element Plug-in for vCenter Server versions before 4.2.3 may disclose sensitive account information to an unauthenticated attacker. NetApp HCI Compute Node versions before 1.4P2 bundle affected versions of Element Plug-in for vCenter Server.
Netapp Hyper Converged Infrastructure Compute Node
Netapp Element Plug-in For Vcenter Server
9.8
CVSSv3
CVE-2021-26987
Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework versions before 1.3.2 are susceptible to a vulnerability which when successfully exploited could lead to Remote Code Execution. All versions of Element Plug-in for vCenter Server, Managemen...
Vmware Spring Boot
Netapp Element Plug-in For Vcenter Server
Netapp Management Services For Element Software And Netapp Hci
Netapp Solidfire & Hci Management Node
2.7
CVSSv3
CVE-2022-2047
In Eclipse Jetty versions 9.4.0 thru 9.4.46, and 10.0.0 thru 10.0.9, and 11.0.0 thru 11.0.9 versions, the parsing of the authority segment of an http scheme URI, the Jetty HttpURI class improperly detects an invalid input as a hostname. This can lead to failures in a Proxy scenar...
Eclipse Jetty
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Element Plug-in For Vcenter Server -
Netapp Management Services For Element Software And Netapp Hci -
Netapp Snapcenter -
Netapp Solidfire & Hci Storage Node -
Netapp Hci Compute Node -
7.5
CVSSv3
CVE-2022-2048
In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. This can lead to a Denial of Service scenario where there are no eno...
Eclipse Jetty
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Element Plug-in For Vcenter Server -
Netapp Management Services For Element Software And Netapp Hci -
Netapp Snapcenter -
Netapp Solidfire & Hci Storage Node -
Netapp Hci Compute Node -
Jenkins Jenkins
5.3
CVSSv3
CVE-2020-27223
In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 (inclusive), 10.0.0, and 11.0.0 when Jetty handles a request containing multiple Accept headers with a large number of “quality” (i.e. q) parameters, the server may enter a denial of service (DoS) state due to high ...
Eclipse Jetty
Eclipse Jetty 9.4.6
Eclipse Jetty 9.4.36
Eclipse Jetty 10.0.0
Eclipse Jetty 11.0.0
Apache Nifi 1.13.0
Apache Spark 3.1.1
Netapp E-series Santricity Os Controller
Netapp E-series Santricity Web Services -
Netapp Element Plug-in For Vcenter Server -
Netapp Hci -
Netapp Hci Management Node -
1 Github repository
5.3
CVSSv3
CVE-2021-28164
In Eclipse Jetty 9.4.37.v20210219 to 9.4.38.v20210224, the default compliance mode allows requests with URIs that contain %2e or %2e%2e segments to access protected resources within the WEB-INF directory. For example a request to /context/%2e/WEB-INF/web.xml can retrieve the web....
Eclipse Jetty 9.4.37
Eclipse Jetty 9.4.38
Netapp Cloud Manager -
Netapp E-series Performance Analyzer -
Netapp E-series Santricity Os Controller
Netapp E-series Santricity Web Services -
Netapp Element Plug-in For Vcenter Server -
Netapp Santricity Cloud Connector -
Netapp Snapcenter -
Netapp Snapcenter Plug-in -
Netapp Storage Replication Adapter For Clustered Data Ontap
Netapp Vasa Provider For Clustered Data Ontap
1 Github repository
3.5
CVSSv3
CVE-2021-34428
For Eclipse Jetty versions <= 9.4.40, <= 10.0.2, <= 11.0.2, if an exception is thrown from the SessionListener#sessionDestroyed() method, then the session ID is not invalidated in the session ID manager. On deployments with clustered sessions and multiple contexts this c...
Eclipse Jetty
Debian Debian Linux 10.0
Netapp Active Iq Unified Manager -
Netapp E-series Santricity Os Controller
Netapp E-series Santricity Web Services -
Netapp Element Plug-in For Vcenter Server -
Netapp Santricity Cloud Connector -
Netapp Snap Creator Framework -
Netapp Snapmanager -
Oracle Autovue For Agile Product Lifecycle Management 21.0.2
Oracle Communications Element Manager 8.2.2
Oracle Communications Services Gatekeeper 7.0
2.7
CVSSv3
CVE-2021-28163
In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and 11.0.0.beta2 to 11.0.1, if a user uses a webapps directory that is a symlink, the contents of the webapps directory is deployed as a static webapp, inadvertently serving the webapps themselves and anything else that m...
Eclipse Jetty
Eclipse Jetty 10.0.0
Eclipse Jetty 10.0.1
Eclipse Jetty 11.0.0
Eclipse Jetty 11.0.1
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Apache Ignite
Apache Solr 8.8.1
Netapp Cloud Manager -
Netapp E-series Performance Analyzer -
5.3
CVSSv3
CVE-2021-34429
For Eclipse Jetty versions 9.4.37-9.4.42, 10.0.1-10.0.5 & 11.0.1-11.0.5, URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. This is a variation of the vulnerability reported in CVE-2021-281...
Eclipse Jetty
Netapp E-series Santricity Os Controller
Netapp E-series Santricity Web Services -
Netapp Element Plug-in For Vcenter Server -
Netapp Hci Management Node -
Netapp Snap Creator Framework -
Netapp Snapcenter Plug-in -
Netapp Solidfire -
Oracle Autovue For Agile Product Lifecycle Management 21.0.2
Oracle Communications Cloud Native Core Binding Support Function 1.10.0
Oracle Communications Cloud Native Core Security Edge Protection Proxy 1.5.0
Oracle Communications Cloud Native Core Service Communication Proxy 1.14.0
1 Github repository
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-23629
CVE-2024-52331
CVE-2025-0693
precious metals charts and widgets for wordpress
neofix
simple downloads list
CVE-2025-23544
CVE-2025-21298
client side
memory leak
CVE-2019-5418
XSS
deebot x5 pro plus
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started