VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Netapp
>
Oncommand Insight
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2021-10-20
CVE-2021-35612
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle
netapp
5.5
5.5
2021-10-20
CVE-2021-35584
Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: ndbcluster/plugin DDL).
network
low complexity
oracle
netapp
4.3
4.3
2021-06-30
CVE-2021-20461
Exposure of Resource to Wrong Sphere vulnerability in multiple products
IBM Cognos Analytics 10.0 and 11.1 is susceptible to a weakness in the implementation of the System Appearance configuration setting.
network
low complexity
ibm
netapp
CWE-668
6.5
6.5
2021-06-10
CVE-2021-20293
A reflected Cross-Site Scripting (XSS) flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final, where it did not properly handle URL encoding when calling @javax.ws.rs.PathParam without any @Produces MediaType.
network
low complexity
redhat
netapp
6.1
6.1
2021-06-02
CVE-2021-3522
Out-of-bounds Read vulnerability in multiple products
GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags.
local
low complexity
gstreamer-project
netapp
oracle
CWE-125
5.5
5.5
2021-06-01
CVE-2019-4471
Missing Encryption of Sensitive Data vulnerability in multiple products
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain sensitive information, caused by the failure to set the secure flag for a sensitive cookie in an HTTPS session.
network
low complexity
ibm
netapp
CWE-311
6.5
6.5
2021-06-01
CVE-2019-4653
Cross-site Scripting vulnerability in multiple products
IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site scripting.
network
low complexity
ibm
netapp
CWE-79
5.4
5.4
2021-06-01
CVE-2019-4722
Improper Handling of Exceptional Conditions vulnerability in multiple products
IBM Cognos Analytics 11.0 and 11.1 could allow a remote attacker to obtain sensitive information via a stack trace due to mishandling of certain error conditions.
network
low complexity
ibm
netapp
CWE-755
4.3
4.3
2021-06-01
CVE-2020-4354
Cross-site Scripting vulnerability in multiple products
IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site scripting.
network
low complexity
ibm
netapp
CWE-79
5.4
5.4
2021-05-05
CVE-2021-29489
Highcharts JS is a JavaScript charting library based on SVG.
network
low complexity
highcharts
netapp
5.4
5.4
«
Previous
1
2
...
3
4
5
(current)
6
7
...
28
29
»
Next