Netapp

Active Iq Unified Manager

846 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
2.5

CVE-2024-21002

  • EPSS 0.05%
  • Veröffentlicht 16.04.2024 22:15:13
  • Zuletzt bearbeitet 29.05.2025 19:22:07

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JavaFX). Supported versions that are affected are Oracle Java SE: 8u401; Oracle GraalVM Enterprise Edition: 20.3.13 and 21.3.9. Difficult t...

4.9

CVE-2024-20993

  • EPSS 0.15%
  • Veröffentlicht 16.04.2024 22:15:12
  • Zuletzt bearbeitet 27.11.2024 16:36:44

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network a...

5.3

CVE-2024-20994

  • EPSS 0.41%
  • Veröffentlicht 16.04.2024 22:15:12
  • Zuletzt bearbeitet 27.11.2024 16:36:42

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Difficult to exploit vulnerability allows low privileged attacker with...

6.3

CVE-2024-2379

Exploit
  • EPSS 0.21%
  • Veröffentlicht 27.03.2024 08:15:41
  • Zuletzt bearbeitet 30.07.2025 19:42:09

libcurl skips the certificate verification for a QUIC connection under certain conditions, when built to use wolfSSL. If told to use an unknown/bad cipher or curve, the error path accidentally skips the verification and returns OK, thus ignoring any ...

8.6

CVE-2024-2398

Exploit
  • EPSS 2.02%
  • Veröffentlicht 27.03.2024 08:15:41
  • Zuletzt bearbeitet 30.07.2025 19:42:27

When an application tells libcurl it wants to allow HTTP/2 server push, and the amount of received headers for the push surpasses the maximum allowed limit (1000), libcurl aborts the server push. When aborting, libcurl inadvertently does not free all...

5.5

CVE-2024-26641

  • EPSS 0.02%
  • Veröffentlicht 18.03.2024 11:15:11
  • Zuletzt bearbeitet 28.03.2025 16:17:08

In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() syzbot found __ip6_tnl_rcv() could access unitiliazed data [1]. Call pskb_inet_may_pull() to fix this, and initialize...

8.1

CVE-2024-22259

  • EPSS 55.01%
  • Veröffentlicht 16.03.2024 05:15:20
  • Zuletzt bearbeitet 10.06.2025 15:55:48

Applications that use UriComponentsBuilder in Spring Framework to parse an externally provided URL (e.g. through a query parameter) AND perform validation checks on the host of the parsed URL may be vulnerable to a open redirect https://cwe.mitre.or...

7.5

CVE-2024-28757

Exploit
  • EPSS 0.91%
  • Veröffentlicht 10.03.2024 05:15:06
  • Zuletzt bearbeitet 04.11.2025 22:15:59

libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).

5.3

CVE-2024-26458

Exploit
  • EPSS 0.21%
  • Veröffentlicht 29.02.2024 01:44:18
  • Zuletzt bearbeitet 23.05.2025 15:39:31

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak in /krb5/src/lib/rpc/pmap_rmt.c.

7.5

CVE-2024-26461

Exploit
  • EPSS 0.06%
  • Veröffentlicht 29.02.2024 01:44:18
  • Zuletzt bearbeitet 23.05.2025 15:30:30

Kerberos 5 (aka krb5) 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c.