VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Netapp
>
Active IQ Unified Manager
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-03-12
CVE-2022-26966
An issue was discovered in the Linux kernel before 5.16.12.
local
low complexity
linux
netapp
debian
5.5
5.5
2022-03-10
CVE-2022-0865
Reachable Assertion vulnerability in multiple products
Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file.
network
low complexity
libtiff
debian
fedoraproject
netapp
CWE-617
6.5
6.5
2022-03-04
CVE-2022-26336
A shortcoming in the HMEF package of poi-scratchpad (Apache POI) allows an attacker to cause an Out of Memory exception.
local
low complexity
apache
netapp
5.5
5.5
2022-02-16
CVE-2022-25258
NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in drivers/usb/gadget/composite.c in the Linux kernel before 5.16.10.
low complexity
linux
fedoraproject
debian
netapp
CWE-476
4.6
4.6
2022-02-16
CVE-2021-3753
A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read in vt as the write access to vc_mode is not protected by lock-in vt_ioctl (KDSETMDE).
local
high complexity
linux
redhat
netapp
4.7
4.7
2022-01-26
CVE-2021-22570
NULL Pointer Dereference vulnerability in multiple products
Nullptr dereference when a null char is present in a proto symbol.
local
low complexity
google
debian
fedoraproject
oracle
netapp
CWE-476
5.5
5.5
2022-01-24
CVE-2022-23437
Infinite Loop vulnerability in multiple products
There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads.
network
low complexity
apache
oracle
netapp
CWE-835
6.5
6.5
2021-10-28
CVE-2021-22096
In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries.
network
low complexity
vmware
netapp
oracle
4.3
4.3
2021-07-19
CVE-2021-35043
Cross-site Scripting vulnerability in multiple products
OWASP AntiSamy before 1.6.4 allows XSS via HTML attributes when using the HTML output serializer (XHTML is not affected).
network
low complexity
antisamy-project
oracle
netapp
CWE-79
6.1
6.1
2021-07-09
CVE-2021-3541
XML Entity Expansion vulnerability in multiple products
A flaw was found in libxml2.
network
low complexity
xmlsoft
redhat
oracle
netapp
CWE-776
6.5
6.5
«
Previous
1
2
...
5
6
7
(current)
8
9
...
30
31
»
Next