Netapp

Active Iq Unified Manager

841 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2020-14547

  • EPSS 0.47%
  • Published 15.07.2020 18:15:17
  • Last modified 21.11.2024 05:03:30

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network ac...

6.5

CVE-2020-14539

  • EPSS 0.6%
  • Published 15.07.2020 18:15:14
  • Last modified 21.11.2024 05:03:29

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacke...

4.9

CVE-2020-14540

  • EPSS 0.47%
  • Published 15.07.2020 18:15:14
  • Last modified 21.11.2024 05:03:29

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access v...

7.5

CVE-2019-20907

  • EPSS 0.29%
  • Published 13.07.2020 13:15:10
  • Last modified 21.11.2024 04:39:39

In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation.

5.9

CVE-2020-14145

  • EPSS 1.25%
  • Published 29.06.2020 18:15:11
  • Last modified 21.11.2024 05:02:44

The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has ...

8.1

CVE-2020-14195

  • EPSS 9.51%
  • Published 16.06.2020 16:15:11
  • Last modified 21.11.2024 05:02:50

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to org.jsecurity.realm.jndi.JndiRealmFactory (aka org.jsecurity).

5.4

CVE-2020-4051

  • EPSS 0.16%
  • Published 15.06.2020 22:15:09
  • Last modified 21.11.2024 05:32:13

In Dijit before versions 1.11.11, and greater than or equal to 1.12.0 and less than 1.12.9, and greater than or equal to 1.13.0 and less than 1.13.8, and greater than or equal to 1.14.0 and less than 1.14.7, and greater than or equal to 1.15.0 and le...

5.3

CVE-2020-14155

  • EPSS 0.15%
  • Published 15.06.2020 17:15:10
  • Last modified 21.11.2024 05:02:45

libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.

8.1

CVE-2020-14060

  • EPSS 8.72%
  • Published 14.06.2020 21:15:09
  • Last modified 21.11.2024 05:02:27

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.xalan.lib.sql.JNDIConnectionPool (aka apache/drill).

8.1

CVE-2020-14061

  • EPSS 6.15%
  • Published 14.06.2020 20:15:10
  • Last modified 27.08.2025 21:15:35

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization gadgets and typing, related to oracle.jms.AQjmsQueueConnectionFactory, oracle.jms.AQjmsXATopicConnectionFactory, oracle.jms.AQjmsTopicConnectionFactory, o...