Netapp

Oncommand Unified Manager

169 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.5

CVE-2020-8585

  • EPSS 0.14%
  • Published 28.01.2021 21:15:12
  • Last modified 21.11.2024 05:39:04

OnCommand Unified Manager Core Package versions prior to 5.2.5 may disclose sensitive account information to unauthorized users via the use of PuTTY Link (plink).

5

CVE-2020-14803

  • EPSS 0.04%
  • Published 21.10.2020 15:15:20
  • Last modified 27.05.2025 16:40:04

Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 11.0.8 and 15. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocol...

5.8

CVE-2020-14792

  • EPSS 0.16%
  • Published 21.10.2020 15:15:19
  • Last modified 27.05.2025 16:40:24

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthent...

2.6

CVE-2020-14796

  • EPSS 0.11%
  • Published 21.10.2020 15:15:19
  • Last modified 27.05.2025 16:42:50

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthe...

4.3

CVE-2020-14797

  • EPSS 0.15%
  • Published 21.10.2020 15:15:19
  • Last modified 27.05.2025 16:41:23

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthe...

2.6

CVE-2020-14798

  • EPSS 0.21%
  • Published 21.10.2020 15:15:19
  • Last modified 27.05.2025 16:43:05

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthe...

7.8

CVE-2019-18276

Exploit
  • EPSS 40.02%
  • Published 28.11.2019 01:15:10
  • Last modified 09.06.2025 16:15:29

An issue was discovered in disable_priv_mode in shell.c in GNU Bash through 5.0 patch 11. By default, if Bash is run with its effective UID not equal to its real UID, it will drop privileges by setting its effective UID to its real UID. However, it d...

9.8

CVE-2019-5482

  • EPSS 10.79%
  • Published 16.09.2019 19:15:10
  • Last modified 21.11.2024 04:45:01

Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.

7.8

CVE-2019-5443

  • EPSS 0.95%
  • Published 02.07.2019 19:15:10
  • Last modified 21.11.2024 04:44:56

A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") on invocation. If that curl is invoked by a privile...

7.5

CVE-2019-5495

  • EPSS 0.29%
  • Published 10.05.2019 20:29:00
  • Last modified 21.11.2024 04:45:03

OnCommand Unified Manager for VMware vSphere, Linux and Windows prior to 9.5 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors.