Netapp

Active Iq Unified Manager

841 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2022-2056

Exploit
  • EPSS 0.08%
  • Veröffentlicht 30.06.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:14

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

6.5

CVE-2022-2057

Exploit
  • EPSS 0.08%
  • Veröffentlicht 30.06.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:14

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

6.5

CVE-2022-2058

Exploit
  • EPSS 0.08%
  • Veröffentlicht 30.06.2022 16:15:08
  • Zuletzt bearbeitet 21.11.2024 07:00:14

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

8.1

CVE-2022-27778

Exploit
  • EPSS 0.46%
  • Veröffentlicht 02.06.2022 14:15:43
  • Zuletzt bearbeitet 21.11.2024 06:56:10

A use of incorrectly resolved name vulnerability fixed in 7.83.1 might remove the wrong file when `--no-clobber` is used together with `--remove-on-error`.

7.5

CVE-2022-1678

  • EPSS 0.52%
  • Veröffentlicht 25.05.2022 15:15:07
  • Zuletzt bearbeitet 21.11.2024 06:41:14

An issue was discovered in the Linux Kernel from 4.18 to 4.19, an improper update of sock reference in TCP pacing can lead to memory/netns leak, which can be used by remote clients.

5.9

CVE-2021-3597

  • EPSS 0.17%
  • Veröffentlicht 24.05.2022 19:15:09
  • Zuletzt bearbeitet 21.11.2024 06:21:56

A flaw was found in undertow. The HTTP2SourceChannel fails to write the final frame under some circumstances, resulting in a denial of service. The highest threat from this vulnerability is availability. This flaw affects Undertow versions prior to 2...

5.9

CVE-2021-3629

  • EPSS 0.1%
  • Veröffentlicht 24.05.2022 19:15:09
  • Zuletzt bearbeitet 21.11.2024 06:22:01

A flaw was found in Undertow. A potential security issue in flow control handling by the browser over http/2 may potentially cause overhead or a denial of service in the server. The highest threat from this vulnerability is availability. This flaw af...

5.3

CVE-2022-22976

  • EPSS 0.37%
  • Veröffentlicht 19.05.2022 15:15:08
  • Zuletzt bearbeitet 21.11.2024 06:47:43

Spring Security versions 5.5.x prior to 5.5.7, 5.6.x prior to 5.6.4, and earlier unsupported versions contain an integer overflow vulnerability. When using the BCrypt class with the maximum work factor (31), the encoder does not perform any salt roun...

9.8

CVE-2022-22978

  • EPSS 90.79%
  • Veröffentlicht 19.05.2022 15:15:08
  • Zuletzt bearbeitet 21.11.2024 06:47:43

In spring security versions prior to 5.4.11+, 5.5.7+ , 5.6.4+ and older unsupported versions, RegexRequestMatcher can easily be misconfigured to be bypassed on some servlet containers. Applications using RegexRequestMatcher with `.` in the regular ex...

9.1

CVE-2022-1586

  • EPSS 0.36%
  • Veröffentlicht 16.05.2022 21:15:07
  • Zuletzt bearbeitet 25.03.2025 19:39:30

An out-of-bounds read vulnerability was discovered in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occu...