Netapp

Management Services For Element Software

27 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2023-36054

  • EPSS 0.65%
  • Veröffentlicht 07.08.2023 19:15:09
  • Zuletzt bearbeitet 21.11.2024 08:09:15

lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because _xdr_kadm5_principal_ent_rec does not validate t...

9.8

CVE-2023-37920

  • EPSS 0.11%
  • Veröffentlicht 25.07.2023 21:15:10
  • Zuletzt bearbeitet 13.02.2025 13:50:15

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certific...

7.5

CVE-2023-24329

Exploit
  • EPSS 1.22%
  • Veröffentlicht 17.02.2023 15:15:12
  • Zuletzt bearbeitet 18.03.2025 17:15:41

An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.

7.5

CVE-2022-23491

  • EPSS 0.04%
  • Veröffentlicht 07.12.2022 22:15:09
  • Zuletzt bearbeitet 12.02.2025 17:36:19

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi 2022.12.07 removes root certificates from "TrustCor" from the root store. These are in the ...

8.1

CVE-2022-38023

  • EPSS 0.31%
  • Veröffentlicht 09.11.2022 22:15:16
  • Zuletzt bearbeitet 02.01.2025 22:15:15

Netlogon RPC Elevation of Privilege Vulnerability

7.2

CVE-2022-37967

  • EPSS 2.35%
  • Veröffentlicht 09.11.2022 22:15:14
  • Zuletzt bearbeitet 02.01.2025 22:15:10

Windows Kerberos Elevation of Privilege Vulnerability

8.1

CVE-2022-37966

  • EPSS 1.08%
  • Veröffentlicht 09.11.2022 22:15:13
  • Zuletzt bearbeitet 02.01.2025 22:15:09

Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability

7.5

CVE-2022-45061

Exploit
  • EPSS 0.08%
  • Veröffentlicht 09.11.2022 07:15:09
  • Zuletzt bearbeitet 01.05.2025 15:15:58

An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the decoder could lead t...

6.1

CVE-2022-36033

Exploit
  • EPSS 0.96%
  • Veröffentlicht 29.08.2022 17:15:08
  • Zuletzt bearbeitet 21.11.2024 07:12:13

jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting (XSS) safety. jsoup may incorrectly sanitize HTML including `javascript:` URL expressions, which could allow XSS attacks when a reader subsequently clic...

9.8

CVE-2022-37434

Exploit
  • EPSS 92.68%
  • Veröffentlicht 05.08.2022 07:15:07
  • Zuletzt bearbeitet 30.05.2025 20:15:30

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib s...