Ontap Tools Security Vulnerabilities and Issues — Ontap Tools CVE List

Lucene search

NetappOntap Tools

3 matches found

CVE•added 2024/03/15 11:15 a.m.•285 views

CVE-2024-28752

A SSRF vulnerability using the Aegis DataBinding in versions of Apache CXF before 4.0.4, 3.6.3 and 3.5.8 allows an attacker to perform SSRF style attacks on webservices that take at least one parameter of any type. Users of other data bindings (including the default databinding) are not impacted.

9.3CVSS8.2AI score0.00274EPSS

CVE•added 2024/11/11 11:15 p.m.•140 views

CVE-2024-52533

gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.

9.8CVSS7.5AI score0.00943EPSS

CVE•added 2024/03/07 5:15 p.m.•106 views

CVE-2024-1351

Under certain configurations of --tlsCAFile and tls.CAFile, MongoDB Server may skip peer certificate validation which may result in untrusted connections to succeed. This may effectively reduce the security guarantees provided by TLS and open connections that should have been closed due to failing ...

9.8CVSS8.7AI score0.00167EPSS