Netapp Management_services_for_netapp_hci
17 CVEs affecting Netapp Management_services_for_netapp_hci. Latest disclosed: 2023-07-25. Critical: 0, High: 11.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-38023 | High | 8.1 | 2022-11-09 | Netlogon RPC Elevation of Privilege Vulnerability |
CVE-2022-37966 | High | 8.1 | 2022-11-09 | Windows Kerberos RC4-HMAC Elevation of Privilege Vulnerability |
CVE-2023-37920 | High | 7.5 | 2023-07-25 | Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi… |
CVE-2023-24329 | High | 7.5 | 2023-02-17 | An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank charac… |
CVE-2021-32762 | High | 7.5 | 2021-10-04 | Redis is an open source, in-memory database that persists on disk. The redis-cli command line tool and redis-sentinel service may be vulnerable to integer over… |
CVE-2021-32687 | High | 7.5 | 2021-10-04 | Redis is an open source, in-memory database that persists on disk. An integer overflow bug affecting all versions of Redis can be exploited to corrupt the heap… |
CVE-2021-32675 | High | 7.5 | 2021-10-04 | Redis is an open source, in-memory database that persists on disk. When parsing an incoming Redis Standard Protocol (RESP) request, Redis allocates memory acco… |
CVE-2021-32628 | High | 7.5 | 2021-10-04 | Redis is an open source, in-memory database that persists on disk. An integer overflow bug in the ziplist data structure used by all versions of Redis can be e… |
CVE-2021-32627 | High | 7.5 | 2021-10-04 | Redis is an open source, in-memory database that persists on disk. In affected versions an integer overflow bug in Redis can be exploited to corrupt the heap a… |
CVE-2021-32626 | High | 7.5 | 2021-10-04 | Redis is an open source, in-memory database that persists on disk. In affected versions specially crafted Lua scripts executing in Redis can cause the heap-bas… |
CVE-2022-37967 | High | 7.2 | 2022-11-09 | Windows Kerberos Elevation of Privilege Vulnerability |
CVE-2022-23491 | Medium | 6.8 | 2022-12-07 | Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi… |
CVE-2021-3671 | Medium | 6.5 | 2021-10-12 | A null pointer de-reference was found in the way samba kerberos server handled missing sname in TGS-REQ (Ticket Granting Server - Request). An authenticated us… |
CVE-2022-36033 | Medium | 6.1 | 2022-08-29 | jsoup is a Java HTML parser, built for HTML editing, cleaning, scraping, and cross-site scripting (XSS) safety. jsoup may incorrectly sanitize HTML including `… |
CVE-2021-32672 | Medium | 5.3 | 2021-10-04 | Redis is an open source, in-memory database that persists on disk. When using the Redis Lua Debugger, users can send malformed requests that cause the debugger… |
CVE-2022-24735 | Low | 3.9 | 2022-04-27 | Redis is an in-memory database that persists on disk. By exploiting weaknesses in the Lua script execution environment, an attacker with access to Redis prior… |
CVE-2022-24736 | Low | 3.3 | 2022-04-27 | Redis is an in-memory database that persists on disk. Prior to versions 6.2.7 and 7.0.0, an attacker attempting to load a specially crafted Lua script can caus… |