Vulnerabilities > Netapp

DATE CVE VULNERABILITY TITLE RISK
2021-01-08 CVE-2020-8584 Code Injection vulnerability in Netapp products
Element OS versions prior to 1.8P1 and 12.2 are susceptible to a vulnerability that could allow an unauthenticated remote attacker to perform arbitrary code execution.
network
low complexity
netapp CWE-94
critical
 10.0
10
2020-11-13 CVE-2020-8583 Unspecified vulnerability in Netapp Element and HCI
Element Software versions prior to 12.2 and HCI versions prior to 1.8P1 are susceptible to a vulnerability which could allow an attacker to discover sensitive information by intercepting its transmission within an https session.
network
low complexity
netapp
5.0
5.0
2020-11-13 CVE-2020-8582 Unspecified vulnerability in Netapp Element and HCI
Element Software versions prior to 12.2 and HCI versions prior to 1.8P1 are susceptible to a vulnerability which could allow an authenticated user to view sensitive information.
network
low complexity
netapp
4.0
4.0
2020-11-12 CVE-2020-8760 Integer Overflow OR Wraparound vulnerability in multiple products
Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel netapp CWE-190
4.6
4.6
2020-11-12 CVE-2020-8757 Out-Of-Bounds Read vulnerability in multiple products
Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable escalation of privilege via local access.
local
low complexity
intel netapp CWE-125
4.6
4.6
2020-11-12 CVE-2020-8754 Out-Of-Bounds Read vulnerability in multiple products
Out-of-bounds read in subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure via network access.
network
low complexity
intel netapp CWE-125
5.0
5.0
2020-11-12 CVE-2020-8752 Out-Of-Bounds Write vulnerability in multiple products
Out-of-bounds write in IPv6 subsystem for Intel(R) AMT, Intel(R) ISM versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 14.0.45 may allow an unauthenticated user to potentially enable escalation of privileges via network access.
network
low complexity
intel netapp CWE-787
7.5
7.5
2020-11-12 CVE-2020-8749 Out-Of-Bounds Read vulnerability in multiple products
Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
low complexity
intel netapp CWE-125
5.8
5.8
2020-11-12 CVE-2020-8747 Out-Of-Bounds Read vulnerability in multiple products
Out-of-bounds read in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable information disclosure and/or denial of service via network access.
network
low complexity
intel netapp CWE-125
6.4
6.4
2020-11-12 CVE-2020-8746 Integer Overflow OR Wraparound vulnerability in multiple products
Integer overflow in subsystem for Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
low complexity
intel netapp CWE-190
3.3
3.3