Netapp

Ontap Select Deploy Administration Utility

178 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2020-36328

  • EPSS 0.53%
  • Veröffentlicht 21.05.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:29:17

A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due to an invalid check for buffer size. The highest threat from this vulnerability is to data confidentiality and integrity ...

9.8

CVE-2020-36329

  • EPSS 0.5%
  • Veröffentlicht 21.05.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:29:17

A flaw was found in libwebp in versions before 1.0.1. A use-after-free was found due to a thread being killed too early. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

9.1

CVE-2020-36330

  • EPSS 0.16%
  • Veröffentlicht 21.05.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:29:18

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkVerifyAndAssign. The highest threat from this vulnerability is to data confidentiality and to the service availability.

9.1

CVE-2020-36331

  • EPSS 0.19%
  • Veröffentlicht 21.05.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:29:18

A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function ChunkAssignData. The highest threat from this vulnerability is to data confidentiality and to the service availability.

7.5

CVE-2020-36332

  • EPSS 1.2%
  • Veröffentlicht 21.05.2021 17:15:08
  • Zuletzt bearbeitet 21.11.2024 05:29:18

A flaw was found in libwebp in versions before 1.0.1. When reading a file libwebp allocates an excessive amount of memory. The highest threat from this vulnerability is to the service availability.

5.7

CVE-2021-3426

  • EPSS 0.09%
  • Veröffentlicht 20.05.2021 13:15:07
  • Zuletzt bearbeitet 03.11.2025 22:15:50

There's a flaw in Python 3's pydoc. A local or adjacent attacker who discovers or is able to convince another local or adjacent user to start a pydoc server could access the server and use it to disclose sensitive information belonging to the other u...

8.6

CVE-2021-3517

  • EPSS 0.08%
  • Veröffentlicht 19.05.2021 14:15:07
  • Zuletzt bearbeitet 02.12.2025 22:16:07

There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-o...

8.8

CVE-2021-3518

  • EPSS 0.23%
  • Veröffentlicht 18.05.2021 12:15:08
  • Zuletzt bearbeitet 21.11.2024 06:21:44

There's a flaw in libxml2 in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by an application linked with libxml2 could trigger a use-after-free. The greatest impact from this flaw is to confidentiality, inte...

5.9

CVE-2021-3537

  • EPSS 0.11%
  • Veröffentlicht 14.05.2021 20:15:16
  • Zuletzt bearbeitet 21.11.2024 06:21:47

A vulnerability found in libxml2 in versions before 2.9.11 shows that it did not propagate errors while parsing XML mixed content, causing a NULL dereference. If an untrusted XML document was parsed in recovery mode and post-validated, the flaw could...

6.1

CVE-2021-31879

  • EPSS 0.11%
  • Veröffentlicht 29.04.2021 05:15:08
  • Zuletzt bearbeitet 21.11.2024 06:06:25

GNU Wget through 1.21.1 does not omit the Authorization header upon a redirect to a different origin, a related issue to CVE-2018-1000007.