Netapp

Oncommand Insight

969 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2020-10714

  • EPSS 0.37%
  • Published 23.09.2020 13:15:15
  • Last modified 21.11.2024 04:55:54

A flaw was found in WildFly Elytron version 1.11.3.Final and before. When using WildFly Elytron FORM authentication with a session ID in the URL, an attacker could perform a session fixation attack. The highest threat from this vulnerability is to da...

6.5

CVE-2020-5421

  • EPSS 63.83%
  • Published 19.09.2020 04:15:11
  • Last modified 21.11.2024 05:34:08

In Spring Framework versions 5.2.0 - 5.2.8, 5.1.0 - 5.1.17, 5.0.0 - 5.0.18, 4.3.0 - 4.3.28, and older unsupported versions, the protections against RFD attacks from CVE-2015-5211 may be bypassed depending on the browser used through the use of a jses...

5.9

CVE-2020-13946

  • EPSS 0.23%
  • Published 01.09.2020 21:15:11
  • Last modified 21.11.2024 05:02:12

In Apache Cassandra, all versions prior to 2.1.22, 2.2.18, 3.0.22, 3.11.8 and 4.0-beta2, it is possible for a local attacker without access to the Apache Cassandra process or configuration files to manipulate the RMI registry to perform a man-in-the-...

9.3

CVE-2020-8174

Exploit
  • EPSS 1.49%
  • Published 24.07.2020 22:15:12
  • Last modified 21.11.2024 05:38:26

napi_get_value_string_*() allows various kinds of memory corruption in node < 10.21.0, 12.18.0, and < 14.4.0.

4.9

CVE-2020-14702

  • EPSS 0.42%
  • Published 15.07.2020 18:15:34
  • Last modified 21.11.2024 05:03:55

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m...

7.2

CVE-2020-14697

  • EPSS 0.68%
  • Published 15.07.2020 18:15:33
  • Last modified 21.11.2024 05:03:54

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m...

7.2

CVE-2020-14678

  • EPSS 0.67%
  • Published 15.07.2020 18:15:32
  • Last modified 21.11.2024 05:03:52

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m...

6.5

CVE-2020-14680

  • EPSS 0.54%
  • Published 15.07.2020 18:15:32
  • Last modified 21.11.2024 05:03:52

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple prot...

7.2

CVE-2020-14663

  • EPSS 0.68%
  • Published 15.07.2020 18:15:31
  • Last modified 21.11.2024 05:03:49

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m...

5.1

CVE-2020-14664

  • EPSS 1.94%
  • Published 15.07.2020 18:15:31
  • Last modified 21.11.2024 05:03:50

Vulnerability in the Java SE product of Oracle Java SE (component: JavaFX). The supported version that is affected is Java SE: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to com...