Netapp

Oncommand Insight

969 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2021-39002

  • EPSS 0.18%
  • Published 09.12.2021 17:15:07
  • Last modified 21.11.2024 06:18:23

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.

5.4

CVE-2021-38909

  • EPSS 0.31%
  • Published 03.12.2021 17:15:12
  • Last modified 21.11.2024 06:18:11

IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

5.5

CVE-2021-29867

  • EPSS 0.17%
  • Published 03.12.2021 17:15:11
  • Last modified 21.11.2024 06:01:56

IBM Cognos Analytics 11.1.7 and 11.2.0 could allow an authenticated to view or edit a Jupyter notebook that they should not have access to. IBM X-Force ID: 206212.

5.3

CVE-2021-29719

  • EPSS 0.2%
  • Published 03.12.2021 17:15:10
  • Last modified 21.11.2024 06:01:41

IBM Cognos Analytics 11.1.7 and 11.2.0 could be vulnerable to client side vulnerabilties due to a web response specifying an incorrect content type. IBM X-Force ID: 201091

8.8

CVE-2021-29756

  • EPSS 0.16%
  • Published 03.12.2021 17:15:10
  • Last modified 21.11.2024 06:01:44

IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site request forgery (CSRF) in the My Inbox page which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID...

6.5

CVE-2021-29716

  • EPSS 0.36%
  • Published 03.12.2021 17:15:09
  • Last modified 21.11.2024 06:01:41

IBM Cognos Analytics 11.1.7 and 11.2.0 could allow a low level user to reas of the application that privileged user should only be allowed to view. IBM X-Force ID: 201087.

6.1

CVE-2021-20493

  • EPSS 0.33%
  • Published 03.12.2021 17:15:08
  • Last modified 21.11.2024 05:46:40

IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure with...

7.5

CVE-2021-20470

  • EPSS 0.26%
  • Published 03.12.2021 17:15:07
  • Last modified 21.11.2024 05:46:37

IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 196339.

4

CVE-2021-35642

  • EPSS 0.15%
  • Published 20.10.2021 11:17:18
  • Last modified 21.11.2024 06:12:43

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...

4

CVE-2021-35643

  • EPSS 0.15%
  • Published 20.10.2021 11:17:18
  • Last modified 21.11.2024 06:12:43

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...