Active Iq Unified Manager Security Vulnerabilities and Issues — Page 16 of Active Iq Unified Manager CVE List

Lucene search

NetappActive Iq Unified Manager

837 matches found

CVE•added 2018/01/18 2:29 a.m.•120 views

CVE-2018-2638

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful att...

8.3CVSS8AI score0.00936EPSS

CVE•added 2022/08/23 3:15 p.m.•120 views

CVE-2022-35278

In Apache ActiveMQ Artemis prior to 2.24.0, an attacker could show malicious content and/or redirect users to a malicious URL in the web console by using HTML in the name of an address or queue.

6.1CVSS6.2AI score0.01099EPSS

CVE•added 2022/07/19 10:15 p.m.•118 views

CVE-2022-21553

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful att...

4.9CVSS4.9AI score0.00102EPSS

CVE•added 2022/07/19 10:15 p.m.•117 views

CVE-2022-21522

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.29 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Succe...

4.4CVSS4.5AI score0.00113EPSS

CVE•added 2022/07/19 10:15 p.m.•117 views

CVE-2022-21539

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.29 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of th...

5CVSS4.8AI score0.00147EPSS

CVE•added 2022/04/19 9:15 p.m.•116 views

CVE-2022-21414

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful att...

4.9CVSS4.8AI score0.00125EPSS

CVE•added 2021/07/19 3:15 p.m.•115 views

CVE-2021-35043

OWASP AntiSamy before 1.6.4 allows XSS via HTML attributes when using the HTML output serializer (XHTML is not affected). This was demonstrated by a javascript: URL with &#00058 as the replacement for the : character.

6.1CVSS5.9AI score0.00331EPSS

CVE•added 2022/07/19 10:15 p.m.•115 views

CVE-2022-21509

5.5CVSS5.4AI score0.00114EPSS

CVE•added 2019/10/16 6:15 p.m.•114 views

CVE-2019-2924

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 5.6.45 and prior and 5.7.27 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to comprom...

5.3CVSS4.3AI score0.01795EPSS

CVE•added 2023/07/18 9:15 p.m.•114 views

CVE-2023-22048

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successf...

3.1CVSS3.6AI score0.00116EPSS

CVE•added 2018/07/18 1:29 p.m.•113 views

CVE-2018-2941

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u181, 8u172 and 10.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

8.3CVSS8.5AI score0.01278EPSS

CVE•added 2019/11/18 6:15 a.m.•113 views

CVE-2019-19044

Two memory leaks in the v3d_submit_cl_ioctl() function in drivers/gpu/drm/v3d/v3d_gem.c in the Linux kernel before 5.3.11 allow attackers to cause a denial of service (memory consumption) by triggering kcalloc() or v3d_job_init() failures, aka CID-29cd13cfd762.

7.8CVSS7AI score0.00701EPSS

CVE•added 2022/07/19 10:15 p.m.•113 views

CVE-2022-21517

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

4.9CVSS4.9AI score0.00113EPSS

CVE•added 2023/07/18 9:15 p.m.•113 views

CVE-2023-22033

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of t...

4.4CVSS4.8AI score0.00081EPSS

CVE•added 2023/07/18 9:15 p.m.•113 views

CVE-2023-22038

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Suc...

2.7CVSS3.8AI score0.00066EPSS

CVE•added 2022/07/19 10:15 p.m.•112 views

CVE-2022-21528

5.5CVSS5.4AI score0.00154EPSS

CVE•added 2022/07/19 10:15 p.m.•112 views

CVE-2022-21538

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.29 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Su...

3.1CVSS3.5AI score0.00149EPSS

CVE•added 2022/04/19 9:15 p.m.•111 views

CVE-2022-21462

4.9CVSS4.8AI score0.00125EPSS

CVE•added 2023/04/18 8:15 p.m.•111 views

CVE-2023-21946

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful atta...

6.5CVSS6.5AI score0.0012EPSS

CVE•added 2017/08/08 3:29 p.m.•110 views

CVE-2017-10086

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks r...

9.6CVSS9AI score0.01465EPSS

CVE•added 2019/11/18 6:15 a.m.•110 views

CVE-2019-19069

A memory leak in the fastrpc_dma_buf_attach() function in drivers/misc/fastrpc.c in the Linux kernel before 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering dma_get_sgtable() failures, aka CID-fc739a058d99.

7.8CVSS6.8AI score0.00932EPSS

CVE•added 2022/04/19 9:15 p.m.•110 views

CVE-2022-21413

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

4.9CVSS4.8AI score0.0013EPSS

CVE•added 2022/04/19 9:15 p.m.•110 views

CVE-2022-21415

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful a...

4.9CVSS4.8AI score0.0013EPSS

CVE•added 2022/07/19 10:15 p.m.•110 views

CVE-2022-21531

4.9CVSS4.9AI score0.00113EPSS

CVE•added 2022/07/19 10:15 p.m.•110 views

CVE-2022-21537

4.9CVSS4.9AI score0.00113EPSS

CVE•added 2023/07/18 9:15 p.m.•110 views

CVE-2023-22058

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks...

4.4CVSS4.8AI score0.0027EPSS

CVE•added 2019/03/27 6:29 a.m.•109 views

CVE-2019-10125

An issue was discovered in aio_poll() in fs/aio.c in the Linux kernel through 5.0.4. A file may be released by aio_poll_wake() if an expected event is triggered immediately (e.g., by the close of a pair of pipes) after the return of vfs_poll(), and this will cause a use-after-free.

10CVSS8.9AI score0.04265EPSS

CVE•added 2022/04/19 9:15 p.m.•109 views

CVE-2022-21438

4.9CVSS4.9AI score0.00125EPSS

CVE•added 2022/04/19 9:15 p.m.•109 views

CVE-2022-21452

4.9CVSS4.8AI score0.00125EPSS

CVE•added 2017/08/08 3:29 p.m.•108 views

CVE-2017-10125

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 7u141 and 8u131. Difficult to exploit vulnerability allows physical access to compromise Java SE. While the vulnerability is in Java SE, attacks may significantly i...

7.1CVSS7.6AI score0.00274EPSS

CVE•added 2022/04/19 9:15 p.m.•108 views

CVE-2022-21435

4.9CVSS4.9AI score0.0013EPSS

CVE•added 2023/03/30 8:15 p.m.•107 views

CVE-2023-27537

A double free vulnerability exists in libcurl

5.9CVSS5.7AI score0.00105EPSS

CVE•added 2022/03/28 7:15 p.m.•105 views

CVE-2022-1056

Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 46dc8fcd.

5.5CVSS5.7AI score0.00042EPSS

CVE•added 2022/07/19 10:15 p.m.•105 views

CVE-2022-21525

4.9CVSS4.9AI score0.00152EPSS

CVE•added 2022/07/19 10:15 p.m.•105 views

CVE-2022-21547

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Federated). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful att...

4.9CVSS4.9AI score0.00102EPSS

CVE•added 2019/10/16 6:15 p.m.•104 views

CVE-2019-2922

5.3CVSS4.3AI score0.03486EPSS

CVE•added 2022/05/25 3:15 p.m.•104 views

CVE-2022-1678

An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memory/netns leak, which can be used by remote clients.

7.5CVSS7.2AI score0.00135EPSS

CVE•added 2022/07/19 10:15 p.m.•104 views

CVE-2022-21527

5.5CVSS5.4AI score0.00154EPSS

CVE•added 2022/07/19 10:15 p.m.•104 views

CVE-2022-21529

4.9CVSS4.9AI score0.00113EPSS

CVE•added 2018/04/19 2:29 a.m.•103 views

CVE-2018-2777

Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

4.9CVSS5AI score0.00126EPSS

CVE•added 2023/07/18 9:15 p.m.•103 views

CVE-2023-22057

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful a...

4.9CVSS5.2AI score0.0008EPSS

CVE•added 2022/07/19 10:15 p.m.•101 views

CVE-2022-21526

4.9CVSS4.9AI score0.00152EPSS

CVE•added 2024/09/09 3:15 p.m.•101 views

CVE-2024-8372

Improper sanitization of the value of the 'srcset' attribute in AngularJS allows attackers to bypass common image source restrictions, which can also lead to a form of Content Spoofing https://owasp.org/www-community/attacks/Content_Spoofing . This issue affects AngularJS versions 1.3.0-rc.4 and gr...

4.8CVSS4.6AI score0.00162EPSS

CVE•added 2018/01/18 2:29 a.m.•100 views

CVE-2018-2627

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Installer). Supported versions that are affected are Java SE: 8u152 and 9.0.1. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Suc...

7.5CVSS7.4AI score0.00373EPSS

CVE•added 2018/07/18 1:29 p.m.•100 views

CVE-2018-2942

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Windows DLL). Supported versions that are affected are Java SE: 7u181 and 8u172. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful at...

8.3CVSS8.3AI score0.00583EPSS

CVE•added 2022/04/19 9:15 p.m.•100 views

CVE-2022-21437

4.9CVSS4.9AI score0.0013EPSS

CVE•added 2022/07/19 10:15 p.m.•100 views

CVE-2022-21556

6.5CVSS6.3AI score0.00106EPSS

CVE•added 2022/07/19 10:15 p.m.•100 views

CVE-2022-21569

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful atta...

6.5CVSS6.2AI score0.00197EPSS

CVE•added 2018/01/18 2:29 a.m.•99 views

CVE-2018-2581

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u161, 8u152 and 9.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful at...

4.7CVSS4.4AI score0.00665EPSS

CVE•added 2018/04/19 2:29 a.m.•99 views

CVE-2018-2759

4.9CVSS5AI score0.0012EPSS

Total number of security vulnerabilities837