Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp snap creator framework - vulnerabilities and exploits
(subscribe to this query)
6.3
CVSSv3
CVE-2016-5372
Cross-site request forgery (CSRF) vulnerability in NetApp Snap Creator Framework prior to 4.3.0P1 allows remote malicious users to hijack the authentication of users for requests that have unspecified impact via unknown vectors.
Netapp Snap Creator Framework
7.5
CVSSv3
CVE-2016-7172
NetApp Snap Creator Framework prior to 4.3.1 discloses sensitive information which could be viewed by an unauthorized user.
Netapp Snap Creator Framework
4.6
CVSSv3
CVE-2016-5710
NetApp Snap Creator Framework prior to 4.3P1 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors.
Netapp Snap Creator Framework
9.1
CVSSv3
CVE-2021-23901
An XML external entity (XXE) injection vulnerability exists in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web security vulnerability that allows an malicious user to interfere with an application...
Apache Nutch
Netapp Snap Creator Framework -
5.3
CVSSv3
CVE-2022-22968
In Spring Framework versions 5.3.0 - 5.3.18, 5.2.0 - 5.2.20, and older unsupported versions, the patterns for disallowedFields on a DataBinder are case sensitive which means a field is not effectively protected unless it is listed with both upper and lower case for the first char...
Vmware Spring Framework
Netapp Active Iq Unified Manager -
Netapp Cloud Secure Agent -
Netapp Metrocluster Tiebreaker -
Netapp Snap Creator Framework -
Netapp Snapmanager -
Oracle Mysql Enterprise Monitor
1 Github repository
6.6
CVSSv3
CVE-2021-42550
In logback version 1.2.7 and prior versions, an attacker with the required privileges to edit configurations files could craft a malicious configuration allowing to execute arbitrary code loaded from LDAP servers.
Qos Logback
Qos Logback 1.3.0
Redhat Satellite 6.0
Netapp Cloud Manager -
Netapp Service Level Manager -
Netapp Snap Creator Framework -
Siemens Sinec Nms
5 Github repositories
6.1
CVSSv3
CVE-2020-7656
jquery before 1.9.0 allows Cross-site Scripting attacks via the load method. The load method fails to recognize and remove "<script>" HTML tags that contain a whitespace character, i.e: "</script >", which results in the enclosed script logic to be...
Jquery Jquery
Oracle Peoplesoft Enterprise Peopletools 8.58
Netapp Active Iq Unified Manager -
Netapp Cloud Backup -
Netapp Oncommand System Manager
Netapp Snap Creator Framework -
Juniper Junos 21.2
1 Github repository
4.3
CVSSv3
CVE-2021-22096
In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries.
Vmware Spring Framework
Netapp Active Iq Unified Manager -
Netapp Management Services For Element Software And Netapp Hci -
Netapp Metrocluster Tiebreaker -
Netapp Snap Creator Framework -
Netapp Snapcenter -
Oracle Communications Cloud Native Core Console 1.9.0
Oracle Communications Cloud Native Core Service Communication Proxy 1.15.0
1 Github repository
5.3
CVSSv3
CVE-2021-28169
For Eclipse Jetty versions <= 9.4.40, <= 10.0.2, <= 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory. For example a request to `/concat?/%2557EB-INF/web.xml` can retrieve the we...
Eclipse Jetty
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Oracle Communications Cloud Native Core Policy 1.14.0
Oracle Rest Data Services
Netapp Active Iq Unified Manager -
Netapp Hci -
Netapp Management Services For Element Software -
Netapp Snap Creator Framework -
1 Github repository
8.1
CVSSv3
CVE-2015-8960
The TLS protocol 1.2 and previous versions supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCertificateType but does not directly document the ability to compute the master secret in certain situations with a client secret key and ser...
Ietf Transport Layer Security
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Data Ontap Edge -
Netapp Host Agent -
Netapp Oncommand Shift -
Netapp Plug-in For Symantec Netbackup -
Netapp Smi-s Provider -
Netapp Snap Creator Framework -
Netapp Snapdrive -
Netapp Snapmanager -
Netapp Snapprotect -
Netapp Solidfire & Hci Management Node -
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
remote attackers
buffer overflow
CVE-2024-50603
CVE-2025-0282
CVE-2025-21382
CVE-2025-23041
XXE
CVE-2025-21374
CVE-2025-22996
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »