Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2021-02-16	CVE-2021-23841	NULL Pointer Dereference vulnerability in multiple products The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. network high complexity openssl debian tenable apple netapp oracle siemens CWE-476	5.9
2020-12-08	CVE-2020-1971	NULL Pointer Dereference vulnerability in multiple products The X.509 GeneralName type is a generic type for representing different types of names. network high complexity openssl debian fedoraproject oracle netapp tenable siemens nodejs CWE-476	5.9
2020-11-02	CVE-2020-25689	A memory leak flaw was found in WildFly in all versions up to 21.0.0.Final, where host-controller tries to reconnect in a loop, generating new connections which are not properly closed while not able to connect to domain-controller. network low complexity redhat netapp	6.5
2020-09-19	CVE-2020-5421	In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed depending on the browser used through the use of a jsessionid path parameter. network high complexity vmware oracle netapp	6.5
2020-09-01	CVE-2020-13946	Exposure of Resource to Wrong Sphere vulnerability in multiple products In Apache Cassandra, all versions prior to 2.1.22, 2.2.18, 3.0.22, 3.11.8 and 4.0-beta2, it is possible for a local attacker without access to the Apache Cassandra process or configuration files to manipulate the RMI registry to perform a man-in-the-middle attack and capture user names and passwords used to access the JMX interface. network high complexity apache netapp CWE-668	5.9
2020-07-15	CVE-2020-14702	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). network low complexity netapp canonical oracle	4.9
2020-07-15	CVE-2020-14680	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). network low complexity netapp canonical oracle	6.5
2020-07-15	CVE-2020-14656	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Locking). network low complexity netapp canonical oracle	4.9
2020-07-15	CVE-2020-14654	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). network low complexity netapp canonical oracle	4.9
2020-07-15	CVE-2020-14651	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Roles). network low complexity netapp canonical oracle	5.5