Netapp

Active Iq Unified Manager

841 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-46143

Exploit
  • EPSS 4.09%
  • Veröffentlicht 06.01.2022 04:15:07
  • Zuletzt bearbeitet 05.05.2025 17:17:28

In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize.

9

CVE-2021-45960

Exploit
  • EPSS 0.37%
  • Veröffentlicht 01.01.2022 19:15:08
  • Zuletzt bearbeitet 05.05.2025 17:17:28

In Expat (aka libexpat) before 2.4.3, a left shift by 29 (or more) places in the storeAtts function in xmlparse.c can lead to realloc misbehavior (e.g., allocating too few bytes, or only freeing memory).

10

CVE-2021-44228

Warnung Exploit
  • EPSS 94.36%
  • Veröffentlicht 10.12.2021 10:15:09
  • Zuletzt bearbeitet 08.08.2025 18:52:00

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...

7.5

CVE-2021-43618

Exploit
  • EPSS 0.5%
  • Veröffentlicht 15.11.2021 04:15:06
  • Zuletzt bearbeitet 21.11.2024 06:29:31

GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 has an mpz/inp_raw.c integer overflow and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms.

4.3

CVE-2021-22096

  • EPSS 0.22%
  • Veröffentlicht 28.10.2021 16:15:07
  • Zuletzt bearbeitet 21.11.2024 05:49:31

In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries.

4

CVE-2021-35621

  • EPSS 6.24%
  • Veröffentlicht 20.10.2021 11:17:13
  • Zuletzt bearbeitet 21.11.2024 06:12:40

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 7.4.33 and prior, 7.5.23 and prior, 7.6.19 and prior and 8.0.26 and prior. Difficult to exploit vulnerability allows hi...

1.4

CVE-2021-35618

  • EPSS 0.32%
  • Veröffentlicht 20.10.2021 11:17:12
  • Zuletzt bearbeitet 21.11.2024 06:12:39

Vulnerability in the MySQL Cluster product of Oracle MySQL (component: Cluster: General). Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical commun...

4.3

CVE-2021-35603

  • EPSS 0.12%
  • Veröffentlicht 20.10.2021 11:17:05
  • Zuletzt bearbeitet 21.11.2024 06:12:37

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult ...

5

CVE-2021-35586

  • EPSS 0.15%
  • Veröffentlicht 20.10.2021 11:16:59
  • Zuletzt bearbeitet 21.11.2024 06:12:35

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily ...

2.6

CVE-2021-35588

  • EPSS 0.09%
  • Veröffentlicht 20.10.2021 11:16:59
  • Zuletzt bearbeitet 21.11.2024 06:12:35

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u311, 8u301; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit...