Netapp

Active Iq Unified Manager

841 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.5

CVE-2020-14771

  • EPSS 0.23%
  • Veröffentlicht 21.10.2020 15:15:17
  • Zuletzt bearbeitet 21.11.2024 05:04:06

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: LDAP Auth). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged attacker wit...

4

CVE-2020-14773

  • EPSS 0.83%
  • Veröffentlicht 21.10.2020 15:15:17
  • Zuletzt bearbeitet 21.11.2024 05:04:07

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple pro...

4

CVE-2020-14775

  • EPSS 1.44%
  • Veröffentlicht 21.10.2020 15:15:17
  • Zuletzt bearbeitet 21.11.2024 05:04:07

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via mul...

6.8

CVE-2020-14672

  • EPSS 1.1%
  • Veröffentlicht 21.10.2020 15:15:15
  • Zuletzt bearbeitet 21.11.2024 05:03:51

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows high privileged...

6.5

CVE-2020-24977

Exploit
  • EPSS 0.55%
  • Veröffentlicht 04.09.2020 00:15:10
  • Zuletzt bearbeitet 21.11.2024 05:16:15

GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e.

8.1

CVE-2020-24616

  • EPSS 3.78%
  • Veröffentlicht 25.08.2020 18:15:11
  • Zuletzt bearbeitet 21.11.2024 05:15:09

FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource (aka Anteros-DBCP).

7.8

CVE-2020-14356

Exploit
  • EPSS 0.93%
  • Veröffentlicht 19.08.2020 15:15:12
  • Zuletzt bearbeitet 21.11.2024 05:03:05

A flaw null pointer dereference in the Linux kernel cgroupv2 subsystem in versions before 5.7.10 was found in the way when reboot the system. A local user could use this flaw to crash the system or escalate their privileges on the system.

7.8

CVE-2020-8574

  • EPSS 0.16%
  • Veröffentlicht 03.08.2020 17:15:12
  • Zuletzt bearbeitet 21.11.2024 05:39:03

Active IQ Unified Manager for Linux versions prior to 9.6 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service enabled allowing unauthorized code execution to local users.

4.4

CVE-2020-8575

  • EPSS 0.06%
  • Veröffentlicht 03.08.2020 17:15:12
  • Zuletzt bearbeitet 21.11.2024 05:39:03

Active IQ Unified Manager for VMware vSphere and Windows versions prior to 9.5 are susceptible to a vulnerability which allows administrative users to cause Denial of Service (DoS).

4.3

CVE-2020-16166

  • EPSS 1.85%
  • Veröffentlicht 30.07.2020 21:15:11
  • Zuletzt bearbeitet 21.11.2024 05:06:53

The Linux kernel through 5.7.11 allows remote attackers to make observations that help to obtain sensitive information about the internal state of the network RNG, aka CID-f227e3ec3b5c. This is related to drivers/char/random.c and kernel/time/timer.c...