Netapp

Active Iq Unified Manager

841 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2021-3156

Warnung Exploit
  • EPSS 92.26%
  • Veröffentlicht 26.01.2021 21:15:12
  • Zuletzt bearbeitet 03.04.2025 19:47:48

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

5.5

CVE-2021-1998

  • EPSS 0.35%
  • Veröffentlicht 20.01.2021 15:15:45
  • Zuletzt bearbeitet 21.11.2024 05:45:46

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...

6.3

CVE-2021-2006

  • EPSS 1.12%
  • Veröffentlicht 20.01.2021 15:15:45
  • Zuletzt bearbeitet 21.11.2024 06:02:09

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to c...

4.3

CVE-2021-2007

  • EPSS 0.49%
  • Veröffentlicht 20.01.2021 15:15:45
  • Zuletzt bearbeitet 21.11.2024 06:02:09

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with ne...

4.9

CVE-2021-2010

  • EPSS 0.36%
  • Veröffentlicht 20.01.2021 15:15:45
  • Zuletzt bearbeitet 21.11.2024 06:02:10

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.6.50 and prior, 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows low privileged attacker with net...

7.1

CVE-2021-2011

  • EPSS 0.52%
  • Veröffentlicht 20.01.2021 15:15:45
  • Zuletzt bearbeitet 21.11.2024 06:02:10

Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via m...

8.3

CVE-2021-20190

  • EPSS 0.32%
  • Veröffentlicht 19.01.2021 17:15:13
  • Zuletzt bearbeitet 27.08.2025 21:15:36

A flaw was found in jackson-databind before 2.9.10.7. FasterXML mishandles the interaction between serialization gadgets and typing. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

9.8

CVE-2021-3177

Exploit
  • EPSS 0.03%
  • Veröffentlicht 19.01.2021 06:15:12
  • Zuletzt bearbeitet 21.11.2024 06:21:03

Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in certain Python applications that accept floating-point numbers as untrusted input, as demonstrated by a 1e300 argument to ...

3.3

CVE-2020-8908

Exploit
  • EPSS 0.01%
  • Veröffentlicht 10.12.2020 23:15:13
  • Zuletzt bearbeitet 21.11.2024 05:39:40

A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). By defau...

4.4

CVE-2020-29660

Exploit
  • EPSS 0.07%
  • Veröffentlicht 09.12.2020 17:15:31
  • Zuletzt bearbeitet 21.11.2024 05:24:22

A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.