Vulnerabilities > Netapp > Management Services FOR Element Software AND Netapp HCI > High

DATE	CVE	VULNERABILITY TITLE	RISK
2024-07-05	CVE-2024-39689	Insufficient Verification of Data Authenticity vulnerability in multiple products Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. network low complexity certifi netapp CWE-345	7.5
2022-07-07	CVE-2022-2048	In Eclipse Jetty HTTP/2 server implementation, when encountering an invalid HTTP/2 request, the error handling has a bug that can wind up not properly cleaning up the active connections and associated resources. network low complexity eclipse debian netapp jenkins	7.5
2021-10-04	CVE-2021-32765	Integer Overflow or Wraparound vulnerability in multiple products Hiredis is a minimalistic C client library for the Redis database. network low complexity redis debian netapp CWE-190	8.8
2021-10-04	CVE-2021-41099	Redis is an open source, in-memory database that persists on disk. network high complexity redis fedoraproject debian netapp oracle	7.5
2021-09-16	CVE-2021-41079	Infinite Loop vulnerability in multiple products Apache Tomcat 8.5.0 to 8.5.63, 9.0.0-M1 to 9.0.43 and 10.0.0-M1 to 10.0.2 did not properly validate incoming TLS packets. network low complexity apache debian netapp CWE-835	7.5
2021-08-18	CVE-2021-37714	jsoup is a Java library for working with HTML. network low complexity jsoup quarkus oracle netapp	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.