Vulnerabilities > Netapp > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-11-12 CVE-2020-12356 Out-of-bounds Read vulnerability in multiple products
Out-of-bounds read in subsystem in Intel(R) AMT versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70 and 14.0.45 may allow a privileged user to potentially enable information disclosure via local access.
local
low complexity
intel netapp CWE-125
4.4
2020-11-12 CVE-2020-13954 Cross-site Scripting vulnerability in multiple products
By default, Apache CXF creates a /services page containing a listing of the available endpoint names and addresses.
network
low complexity
apache netapp oracle CWE-79
6.1
2020-11-06 CVE-2020-8577 Unspecified vulnerability in Netapp E-Series Santricity OS Controller
SANtricity OS Controller Software versions 11.50.1 and higher are susceptible to a vulnerability which could allow an attacker to discover sensitive information by intercepting its transmission within an https session.
network
high complexity
netapp
5.9
2020-11-02 CVE-2020-25689 Memory Leak vulnerability in multiple products
A memory leak flaw was found in WildFly in all versions up to 21.0.0.Final, where host-controller tries to reconnect in a loop, generating new connections which are not properly closed while not able to connect to domain-controller.
network
low complexity
redhat netapp CWE-401
6.5
2020-10-21 CVE-2020-14869 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth).
network
low complexity
oracle netapp
4.9
2020-10-21 CVE-2020-14868 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle netapp
4.9
2020-10-21 CVE-2020-14867 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL).
network
high complexity
oracle netapp
4.4
2020-10-21 CVE-2020-14866 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle netapp
4.9
2020-10-21 CVE-2020-14853 Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: NDBCluster Plugin).
network
low complexity
oracle netapp
4.6
2020-10-21 CVE-2020-14852 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Charsets).
network
low complexity
oracle netapp
4.9