Vulnerabilities > Netapp > Oncommand Workflow Automation

DATE CVE VULNERABILITY TITLE RISK
2021-02-23 CVE-2021-20220 HTTP Request Smuggling vulnerability in multiple products
A flaw was found in Undertow. 		5.8
5.8
2021-02-16 CVE-2021-23841 NULL Pointer Dereference vulnerability in multiple products
The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. 		5.9
5.9
2021-01-27 CVE-2021-26118 While investigating ARTEMIS-2964 it was found that the creation of advisory messages in the OpenWire protocol head of Apache ActiveMQ Artemis 2.15.0 bypassed policy based access control for the entire session.
network
low complexity
apache netapp
7.5
7.5
2021-01-27 CVE-2021-26117 Improper Authentication vulnerability in multiple products
The optional ActiveMQ LDAP login module can be configured to use anonymous access to the LDAP server.
network
low complexity
apache netapp debian oracle CWE-287
7.5
7.5
2021-01-20 CVE-2021-2122 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL).
network
low complexity
oracle netapp
6.8
6.8
2021-01-20 CVE-2021-2088 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML).
local
low complexity
oracle netapp
4.9
4.9
2021-01-20 CVE-2021-2087 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML).
local
low complexity
oracle netapp
4.9
4.9
2021-01-20 CVE-2021-2081 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure).
network
low complexity
oracle netapp
6.8
6.8
2021-01-20 CVE-2021-2076 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle netapp
6.8
6.8
2021-01-20 CVE-2021-2072 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure).
network
low complexity
oracle netapp
6.8
6.8