Netapp

Active Iq Unified Manager

846 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-2953

  • EPSS 1.47%
  • Veröffentlicht 30.05.2023 22:15:10
  • Zuletzt bearbeitet 10.01.2025 22:15:23

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

7.5

CVE-2023-0045

Exploit
  • EPSS 0.19%
  • Veröffentlicht 25.04.2023 23:15:09
  • Zuletzt bearbeitet 13.02.2025 17:15:52

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ib_prctl_set  function updates the Thread Information Flags (TIFs) for the task and updates the SPEC_CTRL MSR on the function __speculation_ctr...

6.3

CVE-2023-20862

  • EPSS 0.37%
  • Veröffentlicht 19.04.2023 20:15:10
  • Zuletzt bearbeitet 05.02.2025 16:15:33

In Spring Security, versions 5.7.x prior to 5.7.8, versions 5.8.x prior to 5.8.3, and versions 6.0.x prior to 6.0.3, the logout support does not properly clean the security context if using serialized versions. Additionally, it is not possible to exp...

5.3

CVE-2023-27043

Exploit
  • EPSS 0.09%
  • Veröffentlicht 19.04.2023 00:15:07
  • Zuletzt bearbeitet 03.11.2025 22:16:06

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protect...

5.3

CVE-2023-26049

  • EPSS 0.35%
  • Veröffentlicht 18.04.2023 21:15:09
  • Zuletzt bearbeitet 21.11.2024 07:50:39

Jetty is a java based web server and servlet engine. Nonstandard cookie parsing in Jetty may allow an attacker to smuggle cookies within other cookies, or otherwise perform unintended behavior by tampering with the cookie parsing mechanism. If Jetty ...

4.9

CVE-2023-21962

  • EPSS 0.11%
  • Veröffentlicht 18.04.2023 20:15:16
  • Zuletzt bearbeitet 21.11.2024 07:43:59

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via m...

5.3

CVE-2023-21971

  • EPSS 0.13%
  • Veröffentlicht 18.04.2023 20:15:16
  • Zuletzt bearbeitet 21.11.2024 07:44:01

Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple pr...

4.9

CVE-2023-21945

  • EPSS 0.11%
  • Veröffentlicht 18.04.2023 20:15:15
  • Zuletzt bearbeitet 21.11.2024 07:43:58

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pr...

6.5

CVE-2023-21946

  • EPSS 0.2%
  • Veröffentlicht 18.04.2023 20:15:15
  • Zuletzt bearbeitet 21.11.2024 07:43:58

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple pro...

4.4

CVE-2023-21947

  • EPSS 0.11%
  • Veröffentlicht 18.04.2023 20:15:15
  • Zuletzt bearbeitet 21.11.2024 07:43:58

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via...