Netapp

Ontap Select Deploy Administration Utility

178 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2020-36328

  • EPSS 0.57%
  • Published 21.05.2021 17:15:08
  • Last modified 21.11.2024 05:29:17

A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due to an invalid check for buffer size. The highest threat from this vulnerability is to data confidentiality and integrity ...

9.8

CVE-2020-36329

  • EPSS 0.55%
  • Published 21.05.2021 17:15:08
  • Last modified 21.11.2024 05:29:17

A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

9.1

CVE-2020-36330

  • EPSS 0.16%
  • Published 21.05.2021 17:15:08
  • Last modified 21.11.2024 05:29:18

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.

9.1

CVE-2020-36331

  • EPSS 0.19%
  • Published 21.05.2021 17:15:08
  • Last modified 21.11.2024 05:29:18

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.

7.5

CVE-2020-36332

  • EPSS 1.2%
  • Published 21.05.2021 17:15:08
  • Last modified 21.11.2024 05:29:18

A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability.

5.7

CVE-2021-3426

  • EPSS 0.08%
  • Published 20.05.2021 13:15:07
  • Last modified 21.11.2024 06:21:28

There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other u...

8.6

CVE-2021-3517

  • EPSS 0.09%
  • Published 19.05.2021 14:15:07
  • Last modified 21.11.2024 06:21:44

There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-o...

8.8

CVE-2021-3518

  • EPSS 0.25%
  • Published 18.05.2021 12:15:08
  • Last modified 21.11.2024 06:21:44

There's a flaw in libxml2 in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality, inte...

5.9

CVE-2021-3537

  • EPSS 0.11%
  • Published 14.05.2021 20:15:16
  • Last modified 21.11.2024 06:21:47

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could...

6.1

CVE-2021-31879

  • EPSS 0.11%
  • Published 29.04.2021 05:15:08
  • Last modified 21.11.2024 06:06:25

GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007.