Active IQ Unified Manager

DATE	CVE	VULNERABILITY TITLE	RISK
2019-10-08	CVE-2019-17359	Allocation of Resources Without Limits or Throttling vulnerability in multiple products The ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigger a large attempted memory allocation, and resultant OutOfMemoryError error, via crafted ASN.1 data. network low complexity bouncycastle apache netapp oracle CWE-770	7.5
2019-10-07	CVE-2019-17267	Deserialization of Untrusted Data vulnerability in multiple products A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10. network low complexity fasterxml netapp debian redhat oracle CWE-502 critical	9.8
2019-10-02	CVE-2019-10212	Information Exposure Through Log Files vulnerability in multiple products A flaw was found in, all under 2.0.20, in the Undertow DEBUG log for io.undertow.request.security. network low complexity redhat netapp CWE-532 critical	9.8
2019-10-01	CVE-2019-16943	Deserialization of Untrusted Data vulnerability in multiple products A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. network low complexity fasterxml debian fedoraproject redhat oracle netapp CWE-502 critical	9.8
2019-10-01	CVE-2019-16942	Deserialization of Untrusted Data vulnerability in multiple products A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. network low complexity fasterxml debian fedoraproject redhat netapp oracle CWE-502 critical	9.8
2019-09-09	CVE-2019-16168	Divide By Zero vulnerability in multiple products In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner." network low complexity sqlite netapp canonical fedoraproject debian tenable oracle mcafee CWE-369	6.5
2019-08-19	CVE-2019-15223	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in the Linux kernel before 5.1.8. low complexity linux netapp canonical CWE-476	4.6
2019-08-19	CVE-2019-15222	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in the Linux kernel before 5.2.8. low complexity linux netapp opensuse CWE-476	4.6
2019-08-19	CVE-2019-15221	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in the Linux kernel before 5.1.17. low complexity linux netapp canonical debian opensuse CWE-476	4.6
2019-08-19	CVE-2019-15220	Use After Free vulnerability in multiple products An issue was discovered in the Linux kernel before 5.2.1. low complexity linux netapp canonical debian opensuse CWE-416	4.6