Vulnerability in Netapp Active_iq_unified_manager
CVE-2024-21131
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 2…
EPSS: 0.010 (56.7th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 3.7 (Low). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N.
Affected products
- Netapp Active_iq_unified_manager
- Netapp Bluexp
- Netapp Data_infrastructure_insights_storage_workload_security_agent
- Netapp Oncommand_insight
- Netapp Oncommand_workflow_automation
- Oracle Graalvm — versions 20.3.14, 21.3.10
- Oracle Graalvm_for_jdk — versions 17.0.11, 21.0.3, 22.0.1
- Oracle Jdk — versions 1.8.0, 11.0.23, 17.0.11
- Oracle Jre — versions 1.8.0, 11.0.23, 17.0.11
- Oracle Corporation Java Se Jdk And Jre — versions Oracle Java SE:8u411, Oracle Java SE:8u411-perf, Oracle Java SE:11.0.23
References
- secalert_us@oracle.com (vendor-advisory, Vendor Advisory)
- secalert_us@oracle.com (Third Party Advisory)
Frequently asked questions
- What is CVE-2024-21131?
- CVE-2024-21131 is a low-severity vulnerability in Netapp Active_iq_unified_manager. CVSS score: 3.7/10. Published 2024-07-16.
- How severe is CVE-2024-21131?
- Low severity. CVSS v3 base score is 3.7 out of 10.