Netapp

Oncommand Insight

969 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2022-21600

  • EPSS 0.31%
  • Veröffentlicht 18.10.2022 21:15:11
  • Zuletzt bearbeitet 21.11.2024 06:45:02

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...

4.9

CVE-2022-21604

  • EPSS 0.05%
  • Veröffentlicht 18.10.2022 21:15:11
  • Zuletzt bearbeitet 21.11.2024 06:45:03

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to c...

4.9

CVE-2022-2764

  • EPSS 0.12%
  • Veröffentlicht 01.09.2022 21:15:09
  • Zuletzt bearbeitet 21.11.2024 07:01:39

A flaw was found in Undertow. Denial of service can be achieved as Undertow server waits for the LAST_CHUNK forever for EJB invocations.

5.5

CVE-2021-39009

  • EPSS 0.1%
  • Veröffentlicht 01.09.2022 19:15:12
  • Zuletzt bearbeitet 21.11.2024 06:18:24

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 stores user credentials in plain clear text which can be read by a local privileged user. IBM X-Force ID: 213554.

5.5

CVE-2021-39045

  • EPSS 0.28%
  • Veröffentlicht 01.09.2022 19:15:12
  • Zuletzt bearbeitet 21.11.2024 06:18:28

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 could allow a local attacker to obtain information due to the autocomplete feature on password input fields. IBM X-Force ID: 214345.

7.5

CVE-2022-30614

  • EPSS 1.02%
  • Veröffentlicht 01.09.2022 19:15:12
  • Zuletzt bearbeitet 21.11.2024 07:03:01

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to a denial of service via email flooding caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability to cause the server to consume all available CPU...

8.1

CVE-2022-36773

  • EPSS 0.77%
  • Veröffentlicht 01.09.2022 19:15:12
  • Zuletzt bearbeitet 21.11.2024 07:13:40

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. I...

6.5

CVE-2020-4301

  • EPSS 0.19%
  • Veröffentlicht 01.09.2022 19:15:11
  • Zuletzt bearbeitet 21.11.2024 05:32:33

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 176609.

6.5

CVE-2021-20468

  • EPSS 0.19%
  • Veröffentlicht 01.09.2022 19:15:11
  • Zuletzt bearbeitet 21.11.2024 05:46:37

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 196825.

6.5

CVE-2021-29823

  • EPSS 0.08%
  • Veröffentlicht 01.09.2022 19:15:11
  • Zuletzt bearbeitet 21.11.2024 06:01:52

IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 204465.