Vulnerabilities > Netapp > Storage Automation Store
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-05-11 | CVE-2018-1258 | Incorrect Authorization vulnerability in multiple products Spring Framework version 5.0.5 when used in combination with any versions of Spring Security contains an authorization bypass when using method security. | 8.8 |
| 2018-04-29 | CVE-2018-10549 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. | 8.8 |
| 2018-04-29 | CVE-2018-10548 | NULL Pointer Dereference vulnerability in multiple products An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. | 7.5 |
| 2018-04-29 | CVE-2018-10547 | Cross-site Scripting vulnerability in multiple products An issue was discovered in ext/phar/phar_object.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. | 6.1 |
| 2018-04-29 | CVE-2018-10546 | Infinite Loop vulnerability in multiple products An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. | 7.5 |
| 2018-04-29 | CVE-2018-10545 | Information Exposure vulnerability in multiple products An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. | 4.7 |
| 2018-04-19 | CVE-2018-2846 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema). | 4.9 |
| 2018-04-19 | CVE-2018-2839 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). | 4.9 |
| 2018-04-19 | CVE-2018-2818 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges). | 4.9 |
| 2018-04-19 | CVE-2018-2816 | Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). | 4.9 |