Vulnerabilities > Netapp > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-10-21 | CVE-2022-3649 | A vulnerability was found in Linux Kernel. | 7.0 |
2022-10-19 | CVE-2022-23241 | Unspecified vulnerability in Netapp Clustered Data Ontap 9.11.1 Clustered Data ONTAP versions 9.11.1 through 9.11.1P2 with SnapLock configured FlexGroups are susceptible to a vulnerability which could allow an authenticated remote attacker to arbitrarily modify or delete WORM data prior to the end of the retention period. | 8.1 |
2022-10-17 | CVE-2022-3564 | Race Condition vulnerability in multiple products A vulnerability classified as critical was found in Linux Kernel. | 7.1 |
2022-10-17 | CVE-2022-3545 | A vulnerability has been found in Linux Kernel and classified as critical. | 7.8 |
2022-10-13 | CVE-2022-31123 | Grafana is an open source observability and data visualization platform. | 7.8 |
2022-10-02 | CVE-2022-42003 | Deserialization of Untrusted Data vulnerability in multiple products In FasterXML jackson-databind before versions 2.13.4.1 and 2.12.17.1, resource exhaustion can occur because of a lack of a check in primitive value deserializers to avoid deep wrapper array nesting, when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled. | 7.5 |
2022-10-02 | CVE-2022-42004 | Deserialization of Untrusted Data vulnerability in multiple products In FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer._deserializeFromArray to prevent use of deeply nested arrays. | 7.5 |
2022-09-29 | CVE-2022-38732 | Unspecified vulnerability in Netapp Snapcenter SnapCenter versions prior to 4.7 shipped without Content Security Policy (CSP) implemented which could allow certain types of attacks that otherwise would be prevented. | 7.5 |
2022-09-21 | CVE-2022-38177 | Memory Leak vulnerability in multiple products By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a small memory leak. | 7.5 |
2022-09-21 | CVE-2022-38178 | Memory Leak vulnerability in multiple products By spoofing the target resolver with responses that have a malformed EdDSA signature, an attacker can trigger a small memory leak. | 7.5 |