Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-29	CVE-2013-3320	Cross-site Scripting vulnerability in Netapp Oncommand System Manager 2.0.2/2.1 Cross-site Scripting (XSS) vulnerability in NetApp OnCommand System Manager before 2.2 allows remote attackers to inject arbitrary web script or HTML via the 'full-name' and 'comment' fields. network low complexity netapp CWE-79	6.1
2020-01-16	CVE-2019-18282	Use of Insufficiently Random Values vulnerability in multiple products The flow_dissector feature in the Linux kernel 4.3 through 5.x before 5.3.10 has a device tracking vulnerability, aka CID-55667441c84f. network low complexity linux debian netapp CWE-330	5.3
2020-01-15	CVE-2020-2686	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). network low complexity oracle canonical netapp	6.5
2020-01-15	CVE-2020-2679	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). network low complexity oracle canonical netapp	4.9
2020-01-15	CVE-2020-2660	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). network low complexity oracle canonical netapp	4.9
2020-01-15	CVE-2020-2627	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). network low complexity oracle canonical netapp	6.5
2020-01-15	CVE-2020-2601	Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). network high complexity oracle debian canonical opensuse netapp redhat	6.8
2020-01-15	CVE-2020-2593	Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). network high complexity oracle redhat debian canonical opensuse mcafee netapp	4.8
2020-01-15	CVE-2020-2589	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). network low complexity oracle canonical netapp	4.9
2020-01-15	CVE-2020-2588	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). network low complexity oracle canonical netapp	4.9