Vulnerabilities > Netapp > Management Services FOR Netapp HCI
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-17 | CVE-2023-24329 | Improper Input Validation vulnerability in multiple products An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters. | 7.5 |
| 2022-11-09 | CVE-2022-37966 | Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability | 8.1 |
| 2022-11-09 | CVE-2022-37967 | Windows Kerberos Elevation of Privilege Vulnerability | 7.2 |
| 2022-11-09 | CVE-2022-38023 | Netlogon RPC Elevation of Privilege Vulnerability | 8.1 |
| 2022-08-29 | CVE-2022-36033 | Cross-site Scripting vulnerability in multiple products jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting (XSS) safety. | 6.1 |
| 2022-04-27 | CVE-2022-24735 | Code Injection vulnerability in multiple products Redis is an in-memory database that persists on disk. | 7.8 |
| 2022-04-27 | CVE-2022-24736 | NULL Pointer Dereference vulnerability in multiple products Redis is an in-memory database that persists on disk. | 5.5 |
| 2021-10-12 | CVE-2021-3671 | NULL Pointer Dereference vulnerability in multiple products A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). | 6.5 |
| 2021-10-04 | CVE-2021-32626 | Heap-based Buffer Overflow vulnerability in multiple products Redis is an open source, in-memory database that persists on disk. | 8.8 |
| 2021-10-04 | CVE-2021-32627 | Integer Overflow to Buffer Overflow vulnerability in multiple products Redis is an open source, in-memory database that persists on disk. | 7.5 |