Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2018-07-18	CVE-2018-2964	Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). network high complexity oracle netapp	5.1
2018-07-18	CVE-2018-2941	Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). network high complexity oracle netapp	5.1
2018-07-18	CVE-2018-2940	Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). network low complexity oracle hp redhat netapp	4.3
2018-07-18	CVE-2018-2938	Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Java DB). network oracle netapp	6.8
2018-07-10	CVE-2018-3693	Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis. local intel arm oracle schneider-electric netapp redhat fujitsu	4.7
2018-07-10	CVE-2018-3627	Logic bug in Intel Converged Security Management Engine 11.x may allow an attacker to execute arbitrary code via local privileged access. local low complexity intel netapp	4.6
2018-06-11	CVE-2018-12099	Cross-site Scripting vulnerability in multiple products Grafana before 5.2.0-beta1 has XSS vulnerabilities in dashboard links. network grafana netapp CWE-79	4.3
2018-06-07	CVE-2018-12015	Link Following vulnerability in multiple products In Perl through 5.26.2, the Archive::Tar module allows remote attackers to bypass a directory-traversal protection mechanism, and overwrite arbitrary files, via an archive file containing a symlink and a regular file with the same name. network low complexity canonical debian perl archive apple netapp CWE-59	6.4
2018-06-07	CVE-2018-3721	lodash node module before 4.17.5 suffers from a Modification of Assumed-Immutable Data (MAID) vulnerability via defaultsDeep, merge, and mergeWith functions, which allows a malicious user to modify the prototype of "Object" via __proto__, causing the addition or modification of an existing property that will exist on all objects. network low complexity lodash netapp	6.5
2018-05-24	CVE-2018-5485	Unspecified vulnerability in Netapp Oncommand Unified Manager NetApp OnCommand Unified Manager for Windows versions 7.2 through 7.3 are susceptible to a vulnerability which could lead to a privilege escalation attack. local low complexity netapp microsoft	4.6