VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Netapp
>
Storage Automation Store
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2018-04-19
CVE-2018-2846
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Performance Schema).
network
low complexity
oracle
canonical
netapp
4.9
4.9
2018-04-19
CVE-2018-2839
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML).
network
low complexity
oracle
canonical
netapp
4.9
4.9
2018-04-19
CVE-2018-2818
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server : Security : Privileges).
network
low complexity
oracle
canonical
debian
netapp
4.9
4.9
2018-04-19
CVE-2018-2816
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
network
low complexity
oracle
canonical
netapp
4.9
4.9
2018-04-19
CVE-2018-2813
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL).
network
low complexity
oracle
debian
canonical
redhat
netapp
mariadb
4.3
4.3
2018-04-19
CVE-2018-2812
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer).
network
low complexity
oracle
canonical
netapp
5.5
5.5
2018-03-26
CVE-2018-1302
NULL Pointer Dereference vulnerability in multiple products
When an HTTP/2 stream was destroyed after being handled, the Apache HTTP Server prior to version 2.4.30 could have written a NULL pointer potentially to an already freed memory.
network
high complexity
apache
canonical
netapp
CWE-476
5.9
5.9
2018-03-26
CVE-2018-1301
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
A specially crafted request could have crashed the Apache HTTP Server prior to version 2.4.30, due to an out of bound access after a size limit is reached by reading the HTTP header.
network
high complexity
apache
debian
canonical
netapp
redhat
CWE-119
5.9
5.9
2018-03-26
CVE-2018-1283
In Apache httpd 2.4.0 to 2.4.29, when mod_session is configured to forward its session data to CGI applications (SessionEnv on, not the default), a remote user may influence their content by using a "Session" header.
network
high complexity
apache
debian
canonical
netapp
redhat
5.3
5.3
2018-03-09
CVE-2016-8612
Apache HTTP Server mod_cluster before version httpd 2.4.23 is vulnerable to an Improper Input Validation in the protocol parsing logic in the load balancer resulting in a Segmentation Fault in the serving httpd process.
low complexity
apache
redhat
netapp
4.3
4.3
«
Previous
1
2
...
3
4
5
6
7
(current)
»