Lucene search
K
NetappHyper Converged Infrastructure

5 matches found

CVE
CVE
added 2019/02/27 11:0 p.m.922 views

CVE-2019-1559

OpenSSL vulnerability CVE-2019-1559 describes a padding-oracle weakness where, if an application encounters a fatal protocol error and then calls SSL_shutdown() twice (to send close_notify and to receive one), the server may respond differently to a 0-byte record with invalid padding versus inval...

5.9CVSS6.3AI score0.17139EPSS
CVE
CVE
added 2018/08/20 7:0 p.m.426 views

CVE-2018-1000656

Summary (CVE-2018-1000656) The Flask component of the Pallets Project (Python) prior to 0.12.3 contains a CWE-20 Improper Input Validation vulnerability that can cause excessive memory usage, potentially leading to denial of service. The documented attack vector involves attackers sending JSON da...

7.5CVSS7.4AI score0.03855EPSS
CVE
CVE
added 2018/10/08 6:0 p.m.246 views

CVE-2018-18066

Net-SNMP CVE-2018-18066 is a NULL pointer dereference in snmp_oid_compare() within snmplib/snmp_api.c, affecting Net-SNMP versions before 5.8. An unauthenticated remote attacker can crash the agent by sending a crafted UDP packet, enabling a Denial of Service. Affected product scope includes Net-...

7.5CVSS7.2AI score0.04298EPSS
CVE
CVE
added 2018/10/08 6:0 p.m.242 views

CVE-2018-18065

CVE-2018-18065 affects Net-SNMP before 5.8. The vulnerability is a NULL pointer dereference in _set_key within agent/helpers/table_container.c, which an authenticated attacker can exploit by sending a crafted UDP packet to remotely crash the SNMP service (DoS). Documented CVSS v3 base score is 6....

6.5CVSS6.2AI score0.17189EPSS
CVE
CVE
added 2018/06/22 7:0 p.m.142 views

CVE-2018-12538

CVE-2018-12538 affects Eclipse Jetty 9.4.0–9.4.8 when using the FileSessionDataStore for HttpSession persistence. A malicious user could hijack or delete other users’ sessions via the FileSystem storage, due to a flaw in the FileSessionDataStore. Remediation noted in public advisories: upgrade Je...

8.8CVSS8.4AI score0.02689EPSS