Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp storage automation store - vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2018-8026
This vulnerability in Apache Solr 6.0.0 to 6.6.4 and 7.0.0 to 7.3.1 relates to an XML external entity expansion (XXE) in Solr config files (currency.xml, enumsConfig.xml referred from schema.xml, TIKA parsecontext config file). In addition, Xinclude functionality provided in thes...
Apache Solr
Netapp Snapcenter -
Netapp Storage Automation Store -
9.8
CVSSv3
CVE-2019-0192
In Apache Solr versions 5.0.0 to 5.5.5 and 6.0.0 to 6.6.5, the Config API allows to configure the JMX server via an HTTP POST request. By pointing it to a malicious RMI server, an attacker could take advantage of Solr's unsafe deserialization to trigger remote code execution...
Apache Solr
Netapp Storage Automation Store -
2 Github repositories
9.8
CVSSv3
CVE-2019-9025
An issue exists in PHP 7.3.x prior to 7.3.1. An invalid multibyte string supplied as an argument to the mb_split() function in ext/mbstring/php_mbregex.c can cause PHP to execute memcpy() with a negative argument, which could read and write past buffers allocated for the data.
Php Php
Netapp Storage Automation Store -
9.8
CVSSv3
CVE-2017-9120
PHP 7.x up to and including 7.1.5 allows remote malicious users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a long string because of an Integer overflow in mysqli_real_escape_string.
Php Php
Netapp Storage Automation Store -
7.5
CVSSv3
CVE-2018-14884
An issue exists in PHP 7.0.x prior to 7.0.27, 7.1.x prior to 7.1.13, and 7.2.x prior to 7.2.1. Inappropriately parsing an HTTP response leads to a segmentation fault because http_header_value in ext/standard/http_fopen_wrapper.c can be a NULL value that is mishandled in an atoi c...
Php Php
Netapp Storage Automation Store -
4.9
CVSSv3
CVE-2018-3067
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Replication). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise My...
Oracle Mysql
Netapp Snapcenter -
Netapp Storage Automation Store -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
5.3
CVSSv3
CVE-2018-3074
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). Supported versions that are affected are 8.0.11 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromi...
Oracle Mysql
Netapp Snapcenter -
Netapp Storage Automation Store -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
4.9
CVSSv3
CVE-2018-3079
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. S...
Oracle Mysql
Netapp Snapcenter -
Netapp Storage Automation Store -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
2.7
CVSSv3
CVE-2018-3082
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Serv...
Oracle Mysql
Netapp Snapcenter -
Netapp Storage Automation Store -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight
2.8
CVSSv3
CVE-2018-3084
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Shell: Core / Client). Supported versions that are affected are 8.0.11 and prior. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Server execute...
Oracle Mysql
Netapp Snapcenter -
Netapp Storage Automation Store -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »