Netapp

Oncommand Workflow Automation

744 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.8

CVE-2024-21000

  • EPSS 0.19%
  • Published 16.04.2024 22:15:13
  • Last modified 27.11.2024 16:36:11

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Easily exploitable vulnerability allows high privileged attacker wit...

2.5

CVE-2024-21002

  • EPSS 0.05%
  • Published 16.04.2024 22:15:13
  • Last modified 29.05.2025 19:22:07

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaFX). Supported versions that are affected are Oracle Java SE: 8u401; Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Difficult t...

4.9

CVE-2024-20993

  • EPSS 0.15%
  • Published 16.04.2024 22:15:12
  • Last modified 27.11.2024 16:36:44

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network a...

5.3

CVE-2024-20994

  • EPSS 0.41%
  • Published 16.04.2024 22:15:12
  • Last modified 27.11.2024 16:36:42

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Difficult to exploit vulnerability allows low privileged attacker with...

9.3

CVE-2024-28752

  • EPSS 0.36%
  • Published 15.03.2024 11:15:09
  • Last modified 27.06.2025 15:06:40

A SSRF vulnerability using the Aegis DataBinding in versions of Apache CXF before 4.0.4, 3.6.3 and 3.5.8 allows an attacker to perform SSRF style attacks on webservices that take at least one parameter of any type. Users of other data bindings (inclu...

7.5

CVE-2024-28757

Exploit
  • EPSS 0.64%
  • Published 10.03.2024 05:15:06
  • Last modified 28.03.2025 19:15:21

libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).

7.5

CVE-2024-1635

  • EPSS 8.33%
  • Published 19.02.2024 22:15:48
  • Last modified 07.05.2025 12:27:53

A vulnerability was found in Undertow. This vulnerability impacts a server that supports the wildfly-http-client protocol. Whenever a malicious user opens and closes a connection with the HTTP port of the server and then closes the connection immedia...

7.8

CVE-2023-31102

  • EPSS 35.54%
  • Published 03.11.2023 04:15:20
  • Last modified 21.11.2024 08:01:25

Ppmd7.c in 7-Zip before 23.00 allows an integer underflow and invalid read operation via a crafted 7Z archive.

9.8

CVE-2023-38545

  • EPSS 22.22%
  • Published 18.10.2023 04:15:11
  • Last modified 13.02.2025 17:16:47

This flaw makes curl overflow a heap based buffer in the SOCKS5 proxy handshake. When curl is asked to pass along the host name to the SOCKS5 proxy to allow that to resolve the address instead of it getting done by curl itself, the maximum length th...

8.8

CVE-2023-41993

Warning
  • EPSS 9.84%
  • Published 21.09.2023 19:15:11
  • Last modified 29.11.2024 14:43:20

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited against versions of iOS bef...