VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Netapp
>
Oncommand Workflow Automation
> Critical
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2019-10-12
CVE-2019-17531
Deserialization of Untrusted Data vulnerability in multiple products
A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10.
network
low complexity
fasterxml
debian
redhat
oracle
netapp
CWE-502
critical
9.8
9.8
2019-10-07
CVE-2019-17267
Deserialization of Untrusted Data vulnerability in multiple products
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10.
network
low complexity
fasterxml
netapp
debian
redhat
oracle
CWE-502
critical
9.8
9.8
2019-10-01
CVE-2019-16942
Deserialization of Untrusted Data vulnerability in multiple products
A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10.
network
low complexity
fasterxml
debian
fedoraproject
redhat
netapp
oracle
CWE-502
critical
9.8
9.8
2019-10-01
CVE-2019-16943
Deserialization of Untrusted Data vulnerability in multiple products
A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10.
network
low complexity
fasterxml
debian
fedoraproject
redhat
oracle
netapp
CWE-502
critical
9.8
9.8
2019-09-16
CVE-2019-5482
Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.
network
low complexity
haxx
fedoraproject
opensuse
netapp
oracle
debian
CWE-787
critical
9.8
9.8
2019-09-15
CVE-2019-14540
Deserialization of Untrusted Data vulnerability in multiple products
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10.
network
low complexity
fasterxml
netapp
fedoraproject
debian
redhat
oracle
CWE-502
critical
9.8
9.8
2019-09-15
CVE-2019-16335
Deserialization of Untrusted Data vulnerability in multiple products
A Polymorphic Typing issue was discovered in FasterXML jackson-databind before 2.9.10.
network
low complexity
fasterxml
fedoraproject
debian
netapp
redhat
oracle
CWE-502
critical
9.8
9.8
2019-07-29
CVE-2019-14379
SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), leading to remote code execution.
network
low complexity
fasterxml
debian
netapp
fedoraproject
redhat
oracle
apple
critical
9.8
9.8
2019-04-10
CVE-2019-11068
libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit access even upon receiving a -1 error code.
network
low complexity
xmlsoft
canonical
debian
fedoraproject
oracle
netapp
opensuse
critical
9.8
9.8
2019-02-06
CVE-2019-3822
Out-of-bounds Write vulnerability in multiple products
libcurl versions from 7.36.0 to before 7.64.0 are vulnerable to a stack-based buffer overflow.
network
low complexity
haxx
canonical
debian
netapp
siemens
oracle
redhat
CWE-787
critical
9.8
9.8
«
Previous
1
2
(current)
3
4
»
Next