Vulnerabilities > Netapp > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-21 | CVE-2021-28957 | Cross-site Scripting vulnerability in multiple products An XSS vulnerability was discovered in python-lxml's clean module versions before 4.6.3. | 6.1 |
| 2021-03-20 | CVE-2021-28951 | Improper Locking vulnerability in multiple products An issue was discovered in fs/io_uring.c in the Linux kernel through 5.11.8. | 5.5 |
| 2021-03-11 | CVE-2020-4976 | Incorrect Default Permissions vulnerability in multiple products IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to read and write specific files due to weak file permissions. | 4.4 |
| 2021-03-09 | CVE-2020-35522 | In LibTIFF, there is a memory malloc failure in tif_pixarlog.c. | 5.5 |
| 2021-03-09 | CVE-2020-35521 | A flaw was found in libtiff. | 5.5 |
| 2021-03-09 | CVE-2021-21295 | Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. | 5.9 |
| 2021-03-07 | CVE-2021-27363 | An issue was discovered in the Linux kernel through 5.11.3. | 4.4 |
| 2021-03-05 | CVE-2021-28039 | Incorrect Calculation of Buffer Size vulnerability in multiple products An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. | 6.5 |
| 2021-03-05 | CVE-2021-28038 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. | 6.5 |
| 2021-03-04 | CVE-2021-26989 | Unspecified vulnerability in Netapp Data Ontap Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P9 and 9.8 are susceptible to a vulnerability which could allow a remote authenticated attacker to cause a Denial of Service (DoS) on clustered Data ONTAP configured for SMB access. | 6.5 |