Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp system manager 9.0 vulnerabilities and exploits
(subscribe to this query)
357
VMScore
CVE-2018-3721
lodash node module prior to 4.17.5 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability via defaultsDeep, merge, and mergeWith functions, which allows a malicious user to modify the prototype of "Object" via __proto__, causing the addition or modif...
Lodash Lodash
Netapp Active Iq Unified Manager -
Netapp System Manager 9.0
3 Github repositories
605
VMScore
CVE-2016-5045
NetApp OnCommand System Manager prior to 9.0 allows remote malicious users to obtain sensitive credentials via vectors related to cluster peering setup.
Netapp Oncommand System Manager 8.3.2
Netapp Oncommand System Manager 8.3.1
Netapp Oncommand System Manager 8.3
188
VMScore
CVE-2020-29660
A locking inconsistency issue exists in the tty subsystem of the Linux kernel up to and including 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.
Linux Linux Kernel
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Active Iq Unified Manager -
Broadcom Fabric Operating System -
Netapp Solidfire Baseboard Management Controller Firmware -
Netapp H410c Firmware -
Netapp A700s Firmware -
Netapp 8300 Firmware -
Netapp 8700 Firmware -
Netapp A400 Firmware -
NA
CVE-2023-27537
A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads but there was no indication of this fact in the documentation. Due t...
Haxx Libcurl 7.88.1
Haxx Libcurl 7.88.0
Netapp Active Iq Unified Manager -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Clustered Data Ontap 9.0
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
1 Github repository
445
VMScore
CVE-2021-27218
An issue exists in GNOME GLib prior to 2.66.7 and 2.67.x prior to 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated modulo 2**32, causing unintended length truncation.
Gnome Glib
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Netapp Cloud Backup -
Netapp Active Iq Unified Manager -
Netapp E-series Performance Analyzer -
Broadcom Brocade Fabric Operating System Firmware -
445
VMScore
CVE-2021-27219
An issue exists in GNOME GLib prior to 2.66.6 and 2.67.x prior to 2.67.3. The function g_bytes_new has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The overflow could potentially lead to memory corruption.
Gnome Glib
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Debian Debian Linux 9.0
Netapp Cloud Backup -
Netapp Active Iq Unified Manager -
Netapp E-series Performance Analyzer -
Broadcom Brocade Fabric Operating System Firmware -
NA
CVE-2023-27538
An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified, which should have prevented reuse. libcurl maintains a pool of previously used connections to reuse t...
Haxx Libcurl
Fedoraproject Fedora 36
Debian Debian Linux 10.0
Netapp Active Iq Unified Manager -
Broadcom Brocade Fabric Operating System Firmware -
Netapp Clustered Data Ontap 9.0
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
447
VMScore
CVE-2021-43618
GNU Multiple Precision Arithmetic Library (GMP) up to and including 6.2.1 has an mpz/inp_raw.c integer overflow and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms.
Gmplib Gmp
Debian Debian Linux 9.0
Netapp Active Iq Unified Manager -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
642
VMScore
CVE-2020-29661
A locking issue exists in the tty subsystem of the Linux kernel up to and including 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.
Linux Linux Kernel
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Active Iq Unified Manager -
Broadcom Fabric Operating System -
Netapp Solidfire Baseboard Management Controller Firmware -
Netapp H410c Firmware -
Netapp A700s Firmware -
Netapp 8300 Firmware -
Netapp 8700 Firmware -
Netapp A400 Firmware -
Oracle Tekelec Platform Distribution
445
VMScore
CVE-2020-11996
A specially crafted sequence of HTTP/2 requests sent to Apache Tomcat 10.0.0-M1 to 10.0.0-M5, 9.0.0.M1 to 9.0.35 and 8.5.0 to 8.5.55 could trigger high CPU usage for several seconds. If a sufficient number of such requests were made on concurrent HTTP/2 connections, the server co...
Apache Tomcat 9.0.0
Apache Tomcat 10.0.0
Apache Tomcat
Canonical Ubuntu Linux 20.04
Oracle Workload Manager 18c
Oracle Workload Manager 19c
Oracle Workload Manager 12.2.0.1
Oracle Siebel Ui Framework
Oracle Mysql Enterprise Monitor
Opensuse Leap 15.1
Opensuse Leap 15.2
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Oncommand System Manager 3.0
Netapp Oncommand System Manager 3.1.3
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »