Steelstore Cloud Integrated Storage

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-15	CVE-2020-2585	Vulnerability in the Java SE product of Oracle Java SE (component: JavaFX). network high complexity oracle netapp	5.9
2020-01-15	CVE-2020-2583	Improper Handling of Exceptional Conditions vulnerability in multiple products Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). network high complexity oracle redhat debian canonical opensuse mcafee netapp CWE-755	3.7
2020-01-03	CVE-2019-20330	Deserialization of Untrusted Data vulnerability in multiple products FasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.ehcache blocking. network low complexity fasterxml oracle debian netapp CWE-502 critical	9.8
2019-12-30	CVE-2019-20095	Memory Leak vulnerability in multiple products mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel before 5.1.6 has some error-handling cases that did not free allocated hostcmd memory, aka CID-003b686ace82. local low complexity linux opensuse netapp CWE-401	5.5
2019-12-28	CVE-2019-20054	NULL Pointer Dereference vulnerability in multiple products In the Linux kernel before 5.0.6, there is a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e. local low complexity linux netapp CWE-476	5.5
2019-12-25	CVE-2019-19966	Use After Free vulnerability in multiple products In the Linux kernel before 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655. low complexity linux debian opensuse netapp CWE-416	4.6
2019-12-25	CVE-2019-19965	NULL Pointer Dereference vulnerability in multiple products In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5. local high complexity linux debian canonical netapp opensuse CWE-476	4.7
2019-12-24	CVE-2019-19956	Memory Leak vulnerability in multiple products xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak related to newDoc->oldNs. network low complexity xmlsoft debian oracle fedoraproject canonical netapp siemens CWE-401	7.5
2019-12-24	CVE-2019-19947	Use of Uninitialized Resource vulnerability in multiple products In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB device in the drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c driver, aka CID-da2311a6385c. low complexity linux debian canonical netapp CWE-908	4.6
2019-12-23	CVE-2019-5108	Improper Authentication vulnerability in multiple products An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. low complexity linux debian canonical netapp oracle CWE-287	6.5