VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Netapp
>
Oncommand Unified Manager
> 7.3
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2018-10-17
CVE-2018-3156
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
network
low complexity
oracle
canonical
debian
netapp
mariadb
6.5
6.5
2018-10-17
CVE-2018-3155
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser).
network
low complexity
oracle
netapp
canonical
7.7
7.7
2018-10-17
CVE-2018-3145
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser).
network
low complexity
oracle
netapp
6.5
6.5
2018-10-17
CVE-2018-3144
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Audit).
network
high complexity
oracle
netapp
canonical
5.9
5.9
2018-10-17
CVE-2018-3143
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
network
low complexity
oracle
netapp
canonical
debian
mariadb
6.5
6.5
2018-10-17
CVE-2018-3137
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
network
low complexity
oracle
netapp
6.5
6.5
2018-05-24
CVE-2018-5487
Improper Input Validation vulnerability in Netapp Oncommand Unified Manager 7.2/7.3
NetApp OnCommand Unified Manager for Linux versions 7.2 through 7.3 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service bound to the network, and are susceptible to unauthenticated remote code execution.
network
low complexity
netapp
CWE-20
critical
9.8
9.8
2018-05-24
CVE-2018-5485
Unspecified vulnerability in Netapp Oncommand Unified Manager 7.2/7.3
NetApp OnCommand Unified Manager for Windows versions 7.2 through 7.3 are susceptible to a vulnerability which could lead to a privilege escalation attack.
local
low complexity
netapp
7.8
7.8
2018-05-16
CVE-2018-11212
Divide By Zero vulnerability in multiple products
An issue was discovered in libjpeg 9a and 9d.
network
low complexity
ijg
debian
canonical
netapp
oracle
redhat
opensuse
CWE-369
6.5
6.5
2018-05-16
CVE-2018-8014
Insecure Default Initialization of Resource vulnerability in multiple products
The defaults settings for the CORS filter provided in Apache Tomcat 9.0.0.M1 to 9.0.8, 8.5.0 to 8.5.31, 8.0.0.RC1 to 8.0.52, 7.0.41 to 7.0.88 are insecure and enable 'supportsCredentials' for all origins.
network
low complexity
apache
canonical
debian
netapp
CWE-1188
critical
9.8
9.8
«
Previous
1
2
...
3
4
5
(current)
6
7
...
11
12
»
Next