VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Netapp
>
HCI Storage Node
> Low
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2021-04-01
CVE-2021-22890
Authentication Bypass by Spoofing vulnerability in multiple products
curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to bad handling of TLS 1.3 session tickets.
network
high complexity
haxx
fedoraproject
netapp
broadcom
debian
siemens
oracle
splunk
CWE-290
3.7
3.7
2020-12-14
CVE-2020-8284
A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.
network
high complexity
haxx
fedoraproject
debian
netapp
apple
oracle
fujitsu
siemens
splunk
3.7
3.7
2020-10-21
CVE-2020-14779
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization).
network
high complexity
oracle
debian
fedoraproject
opensuse
netapp
3.7
3.7
2020-10-21
CVE-2020-14796
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries).
network
high complexity
oracle
netapp
opensuse
debian
2.6
2.6
2020-10-21
CVE-2020-14798
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries).
network
high complexity
oracle
netapp
debian
opensuse
2.6
2.6