Input validation

A vulnerability in the Control and Provisioning of Wireless Access Points CAPWAP protocol processing of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This...

Design/Logic Flaw

A vulnerability in Simple Network Management Protocol SNMP trap generation for wireless clients of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause an affected device to unexpectedly reload, resulting in a denial of...

CVE-2022-20684

CVE-2022-20684 affects Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family. The issue is an input validation defect in SNMP trap generation for events related to wireless client connections, which can be triggered by an unauthenticated, adjacent attacker sending crafted 802.1X ...

TP-LINK Omada Controller Software 安全漏洞

TP-Link Omada Controller Software is a set of software from Tp-link that supports the management of wireless access points.TP-Link Omada Controller Software versions prior to 5.0.15 are vulnerable to authorization issues, which stem from a lack of authentication measures or insufficient...

CVE-2021-34767

Cisco IOS XE Wireless Controller Software for Catalyst 9800 Series (and related Catalyst 9000 family) is affected by CVE-2021-34767. The issue is a logic error in IPv6 traffic processing that can be exploited by an unauthenticated, adjacent attacker to send crafted link-local IPv6 packets, causin...

CVE-2021-26996

E-Series SANtricity OS Controller Software 11.x versions prior to 11.70.1 are susceptible to a vulnerability which when successfully exploited could allow a remote attacker to discover system configuration and application information which may aid in crafting more complex attacks...

Code injection

E-Series SANtricity OS Controller Software 11.x versions prior to 11.70.1 are susceptible to a vulnerability which when successfully exploited could allow privileged attackers to execute arbitrary code...

CVE-2021-26997

E-Series SANtricity OS Controller Software 11.x versions prior to 11.70.1 are susceptible to a vulnerability which when successfully exploited could allow a remote attacker to discover information via error messaging which may aid in crafting more complex attacks...

CVE-2021-26997

E-Series SANtricity OS Controller Software 11.x versions prior to 11.70.1 are susceptible to a vulnerability which when successfully exploited could allow a remote attacker to discover information via error messaging which may aid in crafting more complex attacks...

CVE-2021-26993

E-Series SANtricity OS Controller Software 11.x versions prior to 11.70.1 are susceptible to a vulnerability which when successfully exploited could allow a remote attacker to cause a partial Denial of Service DoS to the web server...

CVE-2021-26993

NetApp E-Series SANtricity OS Controller Software 11.x versions prior to 11.70.1 are affected by a vulnerability that could allow a remote attacker to cause partial denial of service to the web server. The issue is documented across multiple sources (including CVE-2021-26993 entries) and is not e...

CVE-2021-26995

NetApp SANtricity OS Controller Software 11.x (affected) versions prior to 11.70.1 are vulnerable to a remote code execution where a privileged attacker could execute arbitrary code. The issue affects the controller OS on E-Series SANtricity, with network-accessible exploitation implied by CVSS m...

CVE-2021-26996

CVE-2021-26996 affects NetApp E-Series SANtricity OS Controller Software 11.x prior to 11.70.1. The vulnerability allows a remote attacker to discover system configuration and application information, which may aid in crafting more complex attacks. Affected products/versions are 11.x before 11.70...

CVE-2021-26997

NetApp E-Series SANtricity OS Controller Software 11.x before 11.70.1 is vulnerable to an information-disclosure flaw that can be exploited by a remote attacker through error messaging. Affected product: SANtricity OS Controller Software (NetApp) 11.x; vulnerable component/version: 11.x prior to ...

Netapp E-Series SANtricity OS Controller Software 安全漏洞

Netapp E-Series SANtricity OS Controller Software is a disk array OS control software from American NetApp Netapp. A security vulnerability exists in E-Series SANtricity OS Controller Software versions 11.x through 11.70.1, which can be exploited by attackers to obtain sensitive information...

CVE-2021-1373

CVE-2021-1373 affects Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family Wireless Controllers. The issue arises from insufficient validation of CAPWAP packets in CAPWAP processing, allowing an unauthenticated, remote attacker to cause a denial-of-service by sending malformed C...

CVE-2020-8577

SANtricity OS Controller Software versions 11.50.1 and higher are susceptible to a vulnerability which could allow an attacker to discover sensitive information by intercepting its transmission within an https session...

CVE-2020-8580

SANtricity OS Controller Software versions 11.30 and higher are susceptible to a vulnerability which allows an unauthenticated attacker with access to the system to cause a Denial of Service DoS...

CVE-2020-8577

The CVE-2020-8577 entry affects NetApp SANtricity OS Controller Software 11.50.1 and later. The impact is information disclosure: an attacker could discover sensitive data by intercepting HTTPS session communications. The connected records corroborate the vulnerability description but do not prov...

CVE-2020-8577

SANtricity OS Controller Software versions 11.50.1 and higher are susceptible to a vulnerability which could allow an attacker to discover sensitive information by intercepting its transmission within an https session...