Vulnerabilities > Netapp > MAX Data > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-07-30 CVE-2020-7699 This affects the package express-fileupload before 1.1.8.
network
low complexity
express-fileupload-project netapp
critical
9.8
2020-07-17 CVE-2020-15801 Untrusted Search Path vulnerability in multiple products
In Python 3.8.4, sys.path restrictions specified in a python38._pth file are ignored, allowing code to be loaded from arbitrary locations.
network
low complexity
python netapp CWE-426
critical
9.8
2020-06-22 CVE-2020-14967 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in the jsrsasign package before 8.0.18 for Node.js.
network
low complexity
jsrsasign-project netapp CWE-119
critical
9.8
2020-06-22 CVE-2020-14968 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in the jsrsasign package before 8.0.17 for Node.js.
network
low complexity
jsrsasign-project netapp CWE-119
critical
9.8