Vulnerabilities > Netapp

DATE CVE VULNERABILITY TITLE RISK
2021-11-01 CVE-2021-27005 Resource Exhaustion vulnerability in Netapp Ontap System Manager 9.7/9.8/9.9.12
Clustered Data ONTAP versions 9.6 and higher prior to 9.6P16, 9.7P16, 9.8P7 and 9.9.1P3 are susceptible to a vulnerability which could allow a remote attacker to cause a crash of the httpd server.
network
low complexity
netapp CWE-400
5.0
2021-11-01 CVE-2021-27004 Insecure Storage of Sensitive Information vulnerability in Netapp Ontap System Manager 9.7/9.8/9.9.12
System Manager 9.x versions 9.7 and higher prior to 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to a vulnerability which could allow a local attacker to discover plaintext iSCSI CHAP credentials.
local
low complexity
netapp CWE-922
1.7
2021-10-26 CVE-2021-41184 Cross-site Scripting vulnerability in multiple products
jQuery-UI is the official jQuery user interface library.
4.3
2021-10-26 CVE-2021-41183 Cross-site Scripting vulnerability in multiple products
jQuery-UI is the official jQuery user interface library.
4.3
2021-10-26 CVE-2021-41182 Cross-site Scripting vulnerability in multiple products
jQuery-UI is the official jQuery user interface library.
4.3
2021-10-20 CVE-2021-35648 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS).
network
low complexity
oracle netapp
4.0
2021-10-20 CVE-2021-35647 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle netapp
4.0
2021-10-20 CVE-2021-35646 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle netapp
4.0
2021-10-20 CVE-2021-35645 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle netapp
4.0
2021-10-20 CVE-2021-35644 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle netapp
4.0