Vulnerabilities > Netapp

DATE CVE VULNERABILITY TITLE RISK
2022-08-24 CVE-2021-4209 NULL Pointer Dereference vulnerability in multiple products
A NULL pointer dereference flaw was found in GnuTLS.
network
low complexity
gnu redhat netapp CWE-476
6.5
6.5
2022-08-24 CVE-2021-4214 A heap overflow flaw was found in libpngs' pngimage.c program.
local
low complexity
libpng debian netapp
5.5
5.5
2022-08-23 CVE-2021-3975 A use-after-free flaw was found in libvirt.
network
low complexity
redhat canonical fedoraproject debian netapp
6.5
6.5
2022-08-23 CVE-2022-2938 A flaw was found in the Linux kernel's implementation of Pressure Stall Information.
local
low complexity
linux redhat fedoraproject netapp
7.8
7.8
2022-08-23 CVE-2022-31676 Improper Privilege Management vulnerability in multiple products
VMware Tools (12.0.0, 11.x.y and 10.x.y) contains a local privilege escalation vulnerability.
local
low complexity
vmware debian fedoraproject netapp CWE-269
7.8
7.8
2022-08-23 CVE-2021-3800 A flaw was found in glib before version 2.63.6.
local
low complexity
gnome debian netapp
5.5
5.5
2022-08-23 CVE-2022-35278 Cross-site Scripting vulnerability in multiple products
In Apache ActiveMQ Artemis prior to 2.24.0, an attacker could show malicious content and/or redirect users to a malicious URL in the web console by using HTML in the name of an address or queue.
network
low complexity
apache netapp CWE-79
6.1
6.1
2022-08-22 CVE-2022-2873 Incorrect Calculation of Buffer Size vulnerability in multiple products
An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2C_SMBUS_BLOCK_DATA (with the ioctl I2C_SMBUS) with malicious input data. 		5.5
5.5
2022-08-18 CVE-2021-33060 Out-of-bounds Write vulnerability in multiple products
Out-of-bounds write in the BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable escalation of privilege via local access.
local
low complexity
intel netapp CWE-787
7.8
7.8
2022-08-10 CVE-2022-23238 Unspecified vulnerability in Netapp Storagegrid 11.6.0
Linux deployments of StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.2 deployed with a Linux kernel version less than 4.7.0 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to view limited metrics information and modify alert email recipients and content.
network
low complexity
netapp
6.5
6.5