Management Services For Netapp Hci Security Vulnerabilities and Issues — Management Services For Netapp Hci CVE List

Lucene search

NetappManagement Services For Netapp Hci

17 matches found

CVE•added 2023/02/17 3:15 p.m.•994 views

CVE-2023-24329

An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.

7.5CVSS7.8AI score0.0105EPSS

CVE•added 2022/11/09 10:15 p.m.•714 views

CVE-2022-38023

Netlogon RPC Elevation of Privilege Vulnerability

8.1CVSS8.3AI score0.0032EPSS

CVE•added 2023/07/25 9:15 p.m.•593 views

CVE-2023-37920

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted by...

9.8CVSS9AI score0.00112EPSS

CVE•added 2022/11/09 10:15 p.m.•464 views

CVE-2022-37967

Windows Kerberos Elevation of Privilege Vulnerability

7.2CVSS7.9AI score0.02202EPSS

CVE•added 2021/10/04 6:15 p.m.•445 views

CVE-2021-32762

Redis is an open source, in-memory database that persists on disk. The redis-cli command line tool and redis-sentinel service may be vulnerable to integer overflow when parsing specially crafted large multi-bulk network replies. This is a result of a vulnerability in the underlying hiredis library ...

9CVSS8AI score0.01083EPSS

CVE•added 2022/08/29 5:15 p.m.•425 views

CVE-2022-36033

jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting (XSS) safety. jsoup may incorrectly sanitize HTML including javascript: URL expressions, which could allow XSS attacks when a reader subsequently clicks that link. If the non-default SafeList.preserveR...

6.1CVSS6.2AI score0.00827EPSS

CVE•added 2021/10/04 6:15 p.m.•398 views

CVE-2021-32626

Redis is an open source, in-memory database that persists on disk. In affected versions specially crafted Lua scripts executing in Redis can cause the heap-based Lua stack to be overflowed, due to incomplete checks for this condition. This can result with heap corruption and potentially remote code...

8.8CVSS8.4AI score0.01272EPSS

CVE•added 2022/11/09 10:15 p.m.•375 views

CVE-2022-37966

Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability

8.1CVSS8.5AI score0.00747EPSS

CVE•added 2021/10/12 6:15 p.m.•338 views

CVE-2021-3671

A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated user could use this flaw to crash the samba server.

6.5CVSS7.1AI score0.01131EPSS

CVE•added 2021/10/04 6:15 p.m.•252 views

CVE-2021-32672

Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger’s protocol parser to read data beyond the actual buffer. This issue affects all versions of Redis with Lua debugging support (3.2 or newer)...

5.3CVSS6AI score0.00391EPSS

CVE•added 2021/10/04 6:15 p.m.•249 views

CVE-2021-32687

Redis is an open source, in-memory database that persists on disk. An integer overflow bug affecting all versions of Redis can be exploited to corrupt the heap and potentially be used to leak arbitrary contents of the heap or trigger remote code execution. The vulnerability involves changing the de...

7.5CVSS8.4AI score0.00986EPSS

CVE•added 2022/12/07 10:15 p.m.•248 views

CVE-2022-23491

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi 2022.12.07 removes root certificates from "TrustCor" from the root store. These are in the process of being removed from Mozilla's trust sto...

7.5CVSS7AI score0.00041EPSS

CVE•added 2021/10/04 6:15 p.m.•245 views

CVE-2021-32628

Redis is an open source, in-memory database that persists on disk. An integer overflow bug in the ziplist data structure used by all versions of Redis can be exploited to corrupt the heap and potentially result with remote code execution. The vulnerability involves modifying the default ziplist con...

7.5CVSS8.4AI score0.00588EPSS

CVE•added 2021/10/04 6:15 p.m.•241 views

CVE-2021-32627

Redis is an open source, in-memory database that persists on disk. In affected versions an integer overflow bug in Redis can be exploited to corrupt the heap and potentially result with remote code execution. The vulnerability involves changing the default proto-max-bulk-len and client-query-buffer...

7.5CVSS8.3AI score0.00797EPSS

CVE•added 2021/10/04 6:15 p.m.•240 views

CVE-2021-32675

Redis is an open source, in-memory database that persists on disk. When parsing an incoming Redis Standard Protocol (RESP) request, Redis allocates memory according to user-specified values which determine the number of elements (in the multi-bulk header) and size of each element (in the bulk heade...

7.5CVSS8.1AI score0.02827EPSS

CVE•added 2022/04/27 8:15 p.m.•215 views

CVE-2022-24735

Redis is an in-memory database that persists on disk. By exploiting weaknesses in the Lua script execution environment, an attacker with access to Redis prior to version 7.0.0 or 6.2.7 can inject Lua code that will execute with the (potentially higher) privileges of another Redis user. The Lua scri...

7.8CVSS6.4AI score0.01946EPSS

CVE•added 2022/04/27 8:15 p.m.•174 views

CVE-2022-24736

Redis is an in-memory database that persists on disk. Prior to versions 6.2.7 and 7.0.0, an attacker attempting to load a specially crafted Lua script can cause NULL pointer dereference which will result with a crash of the redis-server process. The problem is fixed in Redis versions 7.0.0 and 6.2....

5.5CVSS5.4AI score0.00344EPSS