Netapp

Oncommand Balance

83 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.6

CVE-2017-10090

  • EPSS 0.49%
  • Published 08.08.2017 15:29:02
  • Last modified 20.04.2025 01:37:25

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u141 and 8u131; Java SE Embedded: 8u131. Easily exploitable vulnerability allows unauthenticated ...

9.6

CVE-2017-10086

  • EPSS 1.12%
  • Published 08.08.2017 15:29:02
  • Last modified 20.04.2025 01:37:25

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JavaFX). Supported versions that are affected are Java SE: 7u141 and 8u131. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple prot...

5.3

CVE-2017-10053

  • EPSS 1.28%
  • Published 08.08.2017 15:29:01
  • Last modified 20.04.2025 01:37:25

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE (subcomponent: 2D). Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerabi...

8.8

CVE-2015-7849

  • EPSS 4.25%
  • Published 07.08.2017 20:29:00
  • Last modified 20.04.2025 01:37:25

Use-after-free vulnerability in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to possibly execute arbitrary code or cause a denial of service (crash) via crafted packets.

6.5

CVE-2015-7850

  • EPSS 2.8%
  • Published 07.08.2017 20:29:00
  • Last modified 20.04.2025 01:37:25

ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (infinite loop or crash) by pointing the key file at the log file.

5.9

CVE-2015-7852

  • EPSS 3.54%
  • Published 07.08.2017 20:29:00
  • Last modified 20.04.2025 01:37:25

ntpq in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (crash) via crafted mode 6 response packets.

9.8

CVE-2015-7853

  • EPSS 20.96%
  • Published 07.08.2017 20:29:00
  • Last modified 20.04.2025 01:37:25

The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a negative input value.

8.8

CVE-2015-7854

  • EPSS 4.19%
  • Published 07.08.2017 20:29:00
  • Last modified 20.04.2025 01:37:25

Buffer overflow in the password management functionality in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted key file.

6.5

CVE-2015-7855

Exploit
  • EPSS 60.88%
  • Published 07.08.2017 20:29:00
  • Last modified 20.04.2025 01:37:25

The decodenetnum function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service (assertion failure) via a 6 or mode 7 packet containing a long data value.

9.8

CVE-2015-7871

  • EPSS 76.65%
  • Published 07.08.2017 20:29:00
  • Last modified 20.04.2025 01:37:25

Crypto-NAK packets in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to bypass authentication.