Vulnerabilities > Netapp > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-01-15 CVE-2020-2583 Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). 4.3
2020-01-15 CVE-2020-2580 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL).
network
low complexity
oracle netapp
4.0
2020-01-15 CVE-2020-2579 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer).
network
low complexity
oracle canonical netapp
4.0
2020-01-15 CVE-2020-2577 Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB).
network
low complexity
oracle canonical netapp
4.0
2020-01-15 CVE-2020-2574 Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). 4.3
2020-01-15 CVE-2020-2573 Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). 4.3
2020-01-15 CVE-2020-2572 Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Audit Plugin).
network
low complexity
oracle canonical netapp
4.0
2020-01-09 CVE-2019-20372 HTTP Request Smuggling vulnerability in multiple products
NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is being fronted by a load balancer.
4.3
2020-01-08 CVE-2019-5188 Out-of-bounds Write vulnerability in multiple products
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4.
6.7
2019-12-30 CVE-2019-4343 Incorrect Authorization vulnerability in multiple products
IBM Cognos Analytics 11.0 and 11.1 allows overly permissive cross-origin resource sharing which could allow an attacker to transfer private information.
network
low complexity
ibm netapp CWE-863
6.5