Netapp

Oncommand Unified Manager

169 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-8585

  • EPSS 0.14%
  • Veröffentlicht 28.01.2021 21:15:12
  • Zuletzt bearbeitet 21.11.2024 05:39:04

OnCommand Unified Manager Core Package versions prior to 5.2.5 may disclose sensitive account information to unauthorized users via the use of PuTTY Link (plink).

5

CVE-2020-14803

  • EPSS 0.04%
  • Veröffentlicht 21.10.2020 15:15:20
  • Zuletzt bearbeitet 27.05.2025 16:40:04

Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocol...

5.8

CVE-2020-14792

  • EPSS 0.16%
  • Veröffentlicht 21.10.2020 15:15:19
  • Zuletzt bearbeitet 27.05.2025 16:40:24

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthent...

2.6

CVE-2020-14796

  • EPSS 0.11%
  • Veröffentlicht 21.10.2020 15:15:19
  • Zuletzt bearbeitet 27.05.2025 16:42:50

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthe...

4.3

CVE-2020-14797

  • EPSS 0.15%
  • Veröffentlicht 21.10.2020 15:15:19
  • Zuletzt bearbeitet 27.05.2025 16:41:23

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthe...

2.6

CVE-2020-14798

  • EPSS 0.21%
  • Veröffentlicht 21.10.2020 15:15:19
  • Zuletzt bearbeitet 27.05.2025 16:43:05

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthe...

7.8

CVE-2019-18276

Exploit
  • EPSS 40.02%
  • Veröffentlicht 28.11.2019 01:15:10
  • Zuletzt bearbeitet 09.06.2025 16:15:29

An issue was discovered in disable_priv_mode in shell.c in GNU Bash through 5.0 patch 11. By default, if Bash is run with its effective UID not equal to its real UID, it will drop privileges by setting its effective UID to its real UID. However, it d...

9.8

CVE-2019-5482

  • EPSS 10.79%
  • Veröffentlicht 16.09.2019 19:15:10
  • Zuletzt bearbeitet 21.11.2024 04:45:01

Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.

7.8

CVE-2019-5443

  • EPSS 0.95%
  • Veröffentlicht 02.07.2019 19:15:10
  • Zuletzt bearbeitet 21.11.2024 04:44:56

A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") on invocation. If that curl is invoked by a privile...

7.5

CVE-2019-5495

  • EPSS 0.29%
  • Veröffentlicht 10.05.2019 20:29:00
  • Zuletzt bearbeitet 21.11.2024 04:45:03

OnCommand Unified Manager for VMware vSphere, Linux and Windows prior to 9.5 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors.