VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Netapp
> Oncommand Workflow Automation
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-04-19
CVE-2022-21451
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
network
high complexity
oracle
netapp
mariadb
2.1
2.1
2022-03-25
CVE-2018-25032
Out-of-bounds Write vulnerability in multiple products
zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.
network
low complexity
zlib
debian
fedoraproject
apple
python
mariadb
netapp
siemens
azul
goto
CWE-787
7.5
7.5
2022-03-11
CVE-2020-36518
Out-of-bounds Write vulnerability in multiple products
jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.
network
low complexity
fasterxml
oracle
debian
netapp
CWE-787
7.5
7.5
2022-02-24
CVE-2022-21824
Due to the formatting logic of the "console.table()" function it was not safe to allow user controlled input to be passed to the "properties" parameter while simultaneously passing a plain object with at least one property as the first parameter, which could be "__proto__".
network
low complexity
nodejs
oracle
debian
netapp
8.2
8.2
2022-02-04
CVE-2022-23913
Allocation of Resources Without Limits or Throttling vulnerability in multiple products
In Apache ActiveMQ Artemis prior to 2.20.0 or 2.19.1, an attacker could partially disrupt availability (DoS) through uncontrolled resource consumption of memory.
network
low complexity
apache
netapp
CWE-770
7.5
7.5
2022-01-26
CVE-2021-22570
NULL Pointer Dereference vulnerability in multiple products
Nullptr dereference when a null char is present in a proto symbol.
local
low complexity
google
debian
fedoraproject
oracle
netapp
CWE-476
5.5
5.5
2022-01-24
CVE-2022-23852
Integer Overflow or Wraparound vulnerability in multiple products
Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML_GetBuffer, for configurations with a nonzero XML_CONTEXT_BYTES.
network
low complexity
libexpat-project
netapp
tenable
debian
oracle
siemens
CWE-190
critical
9.8
9.8
2022-01-19
CVE-2022-21245
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges).
network
low complexity
oracle
netapp
fedoraproject
4.3
4.3
2022-01-19
CVE-2022-21248
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization).
network
high complexity
oracle
netapp
debian
fedoraproject
3.7
3.7
2022-01-19
CVE-2022-21249
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL).
network
low complexity
oracle
netapp
fedoraproject
2.7
2.7
«
Previous
1
2
...
9
10
11
(current)
12
13
...
68
69
»
Next