Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp snapmanager - vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2019-5507
SnapManager for Oracle prior to version 3.4.2P1 are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information.
Netapp Snapmanager
Netapp Snapmanager 3.4.2
5.3
CVSSv3
CVE-2022-22968
In Spring Framework versions 5.3.0 - 5.3.18, 5.2.0 - 5.2.20, and older unsupported versions, the patterns for disallowedFields on a DataBinder are case sensitive which means a field is not effectively protected unless it is listed with both upper and lower case for the first char...
Vmware Spring Framework
Netapp Active Iq Unified Manager -
Netapp Cloud Secure Agent -
Netapp Metrocluster Tiebreaker -
Netapp Snap Creator Framework -
Netapp Snapmanager -
Oracle Mysql Enterprise Monitor
1 Github repository
8.1
CVSSv3
CVE-2015-8960
The TLS protocol 1.2 and previous versions supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCertificateType but does not directly document the ability to compute the master secret in certain situations with a client secret key and ser...
Ietf Transport Layer Security
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Data Ontap Edge -
Netapp Host Agent -
Netapp Oncommand Shift -
Netapp Plug-in For Symantec Netbackup -
Netapp Smi-s Provider -
Netapp Snap Creator Framework -
Netapp Snapdrive -
Netapp Snapmanager -
Netapp Snapprotect -
Netapp Solidfire & Hci Management Node -
3.7
CVSSv3
CVE-2019-2426
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker with network access via mult...
Oracle Jdk 1.7.0
Oracle Jdk 1.8.0
Oracle Jdk 11.0.1
Oracle Jre 1.7.0
Oracle Jre 1.8.0
Oracle Jre 11.0.1
Netapp Oncommand Unified Manager
Netapp Oncommand Workflow Automation
Netapp Snapmanager -
Opensuse Leap 42.3
Hp Xp7 Command View
1 Github repository
8.8
CVSSv3
CVE-2018-12538
In Eclipse Jetty versions 9.4.0 up to and including 9.4.8, when using the optional Jetty provided FileSessionDataStore for persistent storage of HttpSession details, it is possible for a malicious user to access/hijack other HttpSessions and even delete unmatched HttpSessions pre...
Eclipse Jetty
Netapp E-series Santricity Management Plug-ins -
Netapp E-series Santricity Os Controller
Netapp E-series Santricity Web Services Proxy -
Netapp Element Software -
Netapp Hyper Converged Infrastructure -
Netapp Oncommand System Manager
Netapp Oncommand Unified Manager -
Netapp Santricity Cloud Connector -
Netapp Snap Creator Framework -
Netapp Snapcenter -
Netapp Snapmanager -
5.5
CVSSv3
CVE-2021-3522
GStreamer prior to 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.
Gstreamer Project Gstreamer
Netapp Active Iq Unified Manager -
Netapp E-series Santricity Os Controller
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Web Services -
Netapp Hci Management Node -
Netapp Oncommand Insight -
Netapp Oncommand Workflow Automation -
Netapp Santricity Unified Manager -
Netapp Snapmanager -
Netapp Solidfire -
Oracle Openjdk 8
7.5
CVSSv3
CVE-2022-40303
An issue exists in libxml2 prior to 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation...
Xmlsoft Libxml2
Netapp Active Iq Unified Manager -
Netapp Clustered Data Ontap -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Netapp Manageability Sdk -
Netapp Ontap Select Deploy Administration Utility -
Netapp Snapmanager -
Apple Ipados
Apple Iphone Os
Apple Macos
Apple Tvos
Apple Watchos
1 Github repository
7.8
CVSSv3
CVE-2022-40304
An issue exists in libxml2 prior to 2.10.3. Certain invalid XML entity definitions can corrupt a hash table key, potentially leading to subsequent logic errors. In one case, a double-free can be provoked.
Xmlsoft Libxml2
Netapp Active Iq Unified Manager -
Netapp Clustered Data Ontap -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Manageability Software Development Kit -
Netapp Smi-s Provider -
Netapp Snapmanager -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
1 Github repository
4.8
CVSSv3
CVE-2019-2977
Vulnerability in the Java SE product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 11.0.4 and 13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Succe...
Oracle Jdk 11.0.4
Oracle Jdk 13.0.0
Oracle Jre 11.0.4
Oracle Jre 13.0.0
Netapp Active Iq Unified Manager
Netapp E-series Santricity Os Controller
Netapp E-series Santricity Storage Manager -
Netapp E-series Santricity Unified Manager -
Netapp E-series Santricity Web Services Proxy -
Netapp Oncommand Workflow Automation -
Netapp Snapmanager -
Debian Debian Linux 10.0
8.3
CVSSv3
CVE-2020-14664
Vulnerability in the Java SE product of Oracle Java SE (component: JavaFX). The supported version that is affected is Java SE: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful at...
Oracle Jdk 1.8.0
Oracle Jre 1.8.0
Netapp 7-mode Transition Tool -
Netapp Active Iq Unified Manager
Netapp Cloud Backup -
Netapp Cloud Secure Agent -
Netapp E-series Performance Analyzer -
Netapp E-series Santricity Os Controller
Netapp E-series Santricity Web Services -
Netapp Oncommand Insight -
Netapp Oncommand Workflow Automation -
Netapp Santricity Unified Manager -
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2024-55591
CVE-2024-13184
unauthorized
information disclosure
CVE-2024-13385
CVE-2024-43468
denial of service
CVE-2024-57370
CVE-2025-21606
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »