Netapp

Management Services For Element Software

27 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2023-36054

  • EPSS 0.65%
  • Published 07.08.2023 19:15:09
  • Last modified 21.11.2024 08:09:15

lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because _xdr_kadm5_principal_ent_rec does not validate t...

9.8

CVE-2023-37920

  • EPSS 0.11%
  • Published 25.07.2023 21:15:10
  • Last modified 13.02.2025 13:50:15

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certific...

7.5

CVE-2023-24329

Exploit
  • EPSS 1.22%
  • Published 17.02.2023 15:15:12
  • Last modified 18.03.2025 17:15:41

An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters.

7.5

CVE-2022-23491

  • EPSS 0.04%
  • Published 07.12.2022 22:15:09
  • Last modified 12.02.2025 17:36:19

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi 2022.12.07 removes root certificates from "TrustCor" from the root store. These are in the ...

8.1

CVE-2022-38023

  • EPSS 0.31%
  • Published 09.11.2022 22:15:16
  • Last modified 02.01.2025 22:15:15

Netlogon RPC Elevation of Privilege Vulnerability

7.2

CVE-2022-37967

  • EPSS 2.35%
  • Published 09.11.2022 22:15:14
  • Last modified 02.01.2025 22:15:10

Windows Kerberos Elevation of Privilege Vulnerability

8.1

CVE-2022-37966

  • EPSS 1.08%
  • Published 09.11.2022 22:15:13
  • Last modified 02.01.2025 22:15:09

Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability

7.5

CVE-2022-45061

Exploit
  • EPSS 0.08%
  • Published 09.11.2022 07:15:09
  • Last modified 01.05.2025 15:15:58

An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs to the IDNA (RFC 3490) decoder, such that a crafted, unreasonably long name being presented to the decoder could lead t...

6.1

CVE-2022-36033

Exploit
  • EPSS 0.96%
  • Published 29.08.2022 17:15:08
  • Last modified 21.11.2024 07:12:13

jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting (XSS) safety. jsoup may incorrectly sanitize HTML including `javascript:` URL expressions, which could allow XSS attacks when a reader subsequently clic...

9.8

CVE-2022-37434

Exploit
  • EPSS 92.68%
  • Published 05.08.2022 07:15:07
  • Last modified 30.05.2025 20:15:30

zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib s...