Vulnerabilities > Netapp

DATE CVE VULNERABILITY TITLE RISK
2018-08-02 CVE-2018-14851 Out-of-bounds Read vulnerability in multiple products
exif_process_IFD_in_MAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG file.
local
low complexity
php canonical debian netapp CWE-125
5.5
5.5
2018-08-02 CVE-2017-9120 Integer Overflow or Wraparound vulnerability in multiple products
PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a long string because of an Integer overflow in mysqli_real_escape_string.
network
low complexity
php netapp CWE-190
critical
 9.8
9.8
2018-08-02 CVE-2017-9118 Out-of-bounds Read vulnerability in multiple products
PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.
network
low complexity
php netapp CWE-125
7.5
7.5
2018-07-31 CVE-2017-13652 Improper Input Validation vulnerability in Netapp Oncommand Insight
NetApp OnCommand Insight version 7.3.0 and versions prior to 7.2.0 are susceptible to clickjacking attacks which could cause a user to perform an unintended action in the user interface.
network
low complexity
netapp CWE-20
6.5
6.5
2018-07-18 CVE-2018-8011 NULL Pointer Dereference vulnerability in multiple products
By specially crafting HTTP requests, the mod_md challenge handler would dereference a NULL pointer and cause the child process to segfault.
network
low complexity
apache netapp CWE-476
7.5
7.5
2018-07-18 CVE-2018-3084 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Shell: Core / Client).
local
low complexity
oracle netapp
2.8
2.8
2018-07-18 CVE-2018-3082 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL).
network
low complexity
oracle netapp
2.7
2.7
2018-07-18 CVE-2018-3081 Vulnerability in the MySQL Client component of Oracle MySQL (subcomponent: Client programs).
network
high complexity
oracle netapp canonical debian mariadb redhat
5.0
5.0
2018-07-18 CVE-2018-3080 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL).
network
low complexity
oracle netapp
4.9
4.9
2018-07-18 CVE-2018-3079 Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB).
network
low complexity
oracle netapp
4.9
4.9