Latest netapp active iq unified manager vmware vsphere Vulnerabilities

CVE-2023-45862
<a href="https://access.redhat.com/security/cve/CVE-2023-45862">CVE-2023-45862</a> --- An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel...
Linux Linux kernel<6.2.5
ubuntu/linux<4.15.0-220.231
ubuntu/linux<5.4.0-152.169
ubuntu/linux<5.15.0-79.86
ubuntu/linux<6.3~
ubuntu/linux<4.4.0-248.282
and 116 more
CVE-2023-38545
curl and libcurl CVE-2023-38545 and CVE-2023-38546 vulnerabilities
Microsoft Windows Server 2019
Microsoft Windows 11=23H2
Microsoft Windows 11=22H2
Microsoft Windows 11=21H2
Microsoft Windows 11=22H2
Microsoft Windows 11=23H2
and 59 more
CVE-2023-5178
Kernel: use after free in nvmet_tcp_free_crypto in nvme
ubuntu/linux<5.4.0-169.187
ubuntu/linux<5.15.0-91.101
ubuntu/linux<6.2.0-39.40
ubuntu/linux<6.5.0-14.14
ubuntu/linux<6.6~
ubuntu/linux-aws<5.4.0-1116.126
and 137 more
CVE-2023-40745
Libtiff: integer overflow in tiffcp.c
Libtiff Libtiff<4.6.0
Fedoraproject Fedora
Redhat Enterprise Linux=8.0
Redhat Enterprise Linux=9.0
redhat/libtiff<4.6.0
Netapp Active Iq Unified Manager Vmware Vsphere
CVE-2022-48564
read_ints in plistlib.py in Python through 3.9.1 is vulnerable to a potential DoS attack via CPU and RAM exhaustion when processing malformed Apple Property List files in binary format.
Python Python<3.7.7
Python Python>=3.8.0<3.8.2
Python Python>=3.9.0<3.9.1
Python Python=3.10.0-alpha1
debian/python2.7
debian/python3.7<=3.7.3-2+deb10u3
and 16 more
CVE-2022-48566
An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest.
ubuntu/python2.7<2.7.17-1~18.04ubuntu1.13+
ubuntu/python2.7<2.7.12-1ubuntu0~16.04.18+
ubuntu/python3.5<3.5.2-2ubuntu0~16.04.13+
ubuntu/python3.7<3.7.10
ubuntu/python3.8<3.8.10-0ubuntu1~20.04
ubuntu/python3.8<3.8.7
and 13 more
CVE-2023-36054
lib/kadm5/kadm_rpc_xdr.c in MIT Kerberos 5 (aka krb5) before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs becaus...
MIT Kerberos 5<1.20.2
MIT Kerberos 5=1.21
MIT Kerberos 5=1.21-beta1
Debian Debian Linux=10.0
Netapp Active Iq Unified Manager Vmware Vsphere
NetApp Clustered Data ONTAP=9.0
and 3 more
CVE-2023-22053
Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs). Supported versions that are affected are 5.7.42 and prior and 8.0.33 and prior. Difficult to exploit vulnerabili...
Oracle MySQL>=8.0.0<=8.0.33
Oracle MySQL>=5.0.0<=5.7.42
ubuntu/mysql-5.7<5.7.43
ubuntu/mysql-5.7<5.7.43-0ubuntu0.18.04.1+
ubuntu/mysql-5.7<5.7.43-0ubuntu0.16.04.1+
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
and 17 more
CVE-2023-22038
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows ...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22048
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Pluggable Auth). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows low ...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22058
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows high privileged...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22046
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privil...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22054
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privil...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22005
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows high pr...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22033
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.33 and prior. Difficult to exploit vulnerability allows high privileged atta...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22008
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attack...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22057
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high priv...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22056
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privil...
Oracle MySQL>=8.0.0<=8.0.33
ubuntu/mysql-8.0<8.0.34
ubuntu/mysql-8.0<8.0.34-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.34-0ubuntu2
and 11 more
CVE-2023-22049
An unspecified vulnerability in Java SE related to the Libraries component could allow a remote attacker to cause low integrity impacts.
Debian Debian Linux=11.0
Debian Debian Linux=12.0
Oracle GraalVM=20.3.10
Oracle GraalVM=21.3.6
Oracle GraalVM=22.3.2
Oracle GraalVM for JDK=17.0.7
and 38 more
CVE-2023-2829
A `named` instance configured to run as a DNSSEC-validating recursive resolver with the Aggressive Use of DNSSEC-Validated Cache (RFC 8198) option (`synth-from-dnssec`) enabled can be remotely termina...
ISC BIND>=9.16.8<=9.16.41
ISC BIND>=9.18.11<=9.18.15
Netapp Active Iq Unified Manager Vmware Vsphere
Netapp H500s Firmware
Netapp H500s
Netapp H700s Firmware
and 7 more
CVE-2023-2911
If the `recursive-clients` quota is reached on a BIND 9 resolver configured with both `stale-answer-enable yes;` and `stale-answer-client-timeout 0;`, a sequence of serve-stale-related lookups could c...
ubuntu/bind9<1:9.16.1-0ubuntu2.15
ubuntu/bind9<1:9.18.12-0ubuntu0.22.04.2
ubuntu/bind9<1:9.18.12-0ubuntu0.22.10.2
ubuntu/bind9<1:9.18.12-1ubuntu1.1
ubuntu/bind9<9.16.42<9.18.16
ubuntu/bind9<1:9.18.12-1ubuntu2
and 30 more
CVE-2023-2828
ISC BIND is vulnerable to a denial of service, caused by a flaw that allows the named's configured cache size limit to be significantly exceeded. By querying the resolver for specific RRsets in a cert...
IBM QRadar SIEM<=7.5.0 - 7.5.0 UP6
ubuntu/bind9<1:9.11.3+dfsg-1ubuntu1.19+
ubuntu/bind9<1:9.9.5.dfsg-3ubuntu0.19+
ubuntu/bind9<1:9.10.3.dfsg.
ubuntu/bind9<1:9.16.1-0ubuntu2.15
ubuntu/bind9<1:9.18.12-0ubuntu0.22.04.2
and 39 more
CVE-2023-2953
A vulnerability was found in openldap that can cause a null pointer dereference in the ber_memalloc_x() function.
Apple macOS Big Sur<11.7.9
Apple macOS Ventura<13.5
Apple macOS Monterey<12.6.8
ubuntu/openldap<2.4.45+dfsg-1ubuntu1.11+
ubuntu/openldap<2.4.49+dfsg-2ubuntu1.10
ubuntu/openldap<2.5.16+dfsg-0ubuntu0.22.04.2
and 33 more
CVE-2023-20862
In Spring Security, versions 5.7.x prior to 5.7.8, versions 5.8.x prior to 5.8.3, and versions 6.0.x prior to 6.0.3, the logout support does not properly clean the security context if using serialized...
maven/org.springframework.security:spring-security-core>=6.0.0<6.0.3
maven/org.springframework.security:spring-security-core>=5.8.0<5.8.3
maven/org.springframework.security:spring-security-core>=5.7.0<5.7.8
redhat/spring-security<5.7.8
redhat/spring-security<5.8.3
redhat/spring-security<6.0.3
and 6 more
CVE-2023-21971
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows high privi...
Oracle Communications Cloud Native Core Binding Support Function=22.4.0
Oracle Communications Cloud Native Core Binding Support Function=23.1.0
Oracle Communications Cloud Native Core Policy=22.4.0
Oracle Communications Cloud Native Core Policy=23.1.0
Oracle Mysql Connectors>=8.0.0<=8.0.32
Netapp Active Iq Unified Manager Linux
and 4 more
CVE-2023-21919
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged a...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-21920
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privil...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-21953
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Partition). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privil...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-21945
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privil...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-21929
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged a...
debian/mysql-8.0<=8.0.32-1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
and 10 more
CVE-2023-21946
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows low privile...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-21940
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-21911
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attack...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-21947
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows...
debian/mysql-8.0<=8.0.32-1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
and 10 more
CVE-2023-21955
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Partition). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privil...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-21962
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows h...
debian/mysql-8.0<=8.0.32-1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
and 10 more
CVE-2023-21935
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privil...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-21933
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged a...
ubuntu/mysql-8.0<8.0.33-0ubuntu0.20.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.04.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.22.10.1
ubuntu/mysql-8.0<8.0.33-0ubuntu0.23.04.1
ubuntu/mysql-8.0<8.0.33
debian/mysql-8.0<=8.0.32-1
and 10 more
CVE-2023-27537
A double free vulnerability exists in libcurl <8.0.0 when sharing HSTS data between separate "handles". This sharing was introduced without considerations for do this sharing across separate threads b...
IBM IBM® Engineering Requirements Management DOORS<=9.7.2.7
IBM IBM® Engineering Requirements Management DOORS Web Access<=9.7.2.7
Haxx Libcurl=7.88.0
Haxx Libcurl=7.88.1
Netapp Active Iq Unified Manager Vmware Vsphere
NetApp Clustered Data ONTAP=9.0
and 20 more
CVE-2023-27538
An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified, which should have pre...
redhat/curl<8.0.0
IBM IBM® Engineering Requirements Management DOORS<=9.7.2.7
IBM IBM® Engineering Requirements Management DOORS Web Access<=9.7.2.7
Haxx Libcurl>=7.16.1<8.0.0
Fedoraproject Fedora=36
Debian Debian Linux=10.0
and 22 more
CVE-2023-27536
An authentication bypass vulnerability exists libcurl <8.0.0 in the connection reuse feature which can reuse previously established connections with incorrect user permissions due to a failure to chec...
redhat/curl<8.0.0
IBM IBM® Engineering Requirements Management DOORS<=9.7.2.7
IBM IBM® Engineering Requirements Management DOORS Web Access<=9.7.2.7
Haxx Libcurl>=7.22.0<=7.88.1
Fedoraproject Fedora=36
Debian Debian Linux=10.0
and 21 more
CVE-2023-27535
An authentication bypass vulnerability exists in libcurl <8.0.0 in the FTP connection reuse feature that can result in wrong credentials being used during subsequent transfers. Previously created conn...
redhat/curl<8.0.0
IBM IBM® Engineering Requirements Management DOORS<=9.7.2.7
IBM IBM® Engineering Requirements Management DOORS Web Access<=9.7.2.7
Haxx Libcurl>=7.13.0<=7.88.1
Fedoraproject Fedora=36
Debian Debian Linux=10.0
and 21 more
CVE-2023-27534
A path traversal vulnerability exists in curl <8.0.0 SFTP implementation causes the tilde (~) character to be wrongly replaced when used as a prefix in the first path element, in addition to its inten...
redhat/curl<8.0.0
IBM IBM® Engineering Requirements Management DOORS<=9.7.2.7
IBM IBM® Engineering Requirements Management DOORS Web Access<=9.7.2.7
Haxx Curl>=7.18.0<=7.88.1
Fedoraproject Fedora=36
Netapp Active Iq Unified Manager Vmware Vsphere
and 20 more
CVE-2023-27533
A vulnerability in input validation exists in curl <8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during server...
redhat/curl<8.0.0
IBM IBM® Engineering Requirements Management DOORS<=9.7.2.7
IBM IBM® Engineering Requirements Management DOORS Web Access<=9.7.2.7
Haxx Curl>=7.0.0<=7.881
Fedoraproject Fedora=36
Netapp Active Iq Unified Manager Vmware Vsphere
and 20 more
CVE-2023-28486
Sudo before 1.9.13 does not escape control characters in log messages.
Sudo Project Sudo<1.9.13
redhat/sudo<1.9.13
Netapp Active Iq Unified Manager Vmware Vsphere
CVE-2023-28487
Sudo before 1.9.13 does not escape control characters in sudoreplay output.
Sudo Project Sudo<1.9.13
redhat/sudo<1.9.13
Netapp Active Iq Unified Manager Vmware Vsphere
CVE-2022-23240
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions prior to 9.11P1 are susceptible to a vulnerability which allows unauthorized users to update EMS Subscriptions via u...
Netapp Active Iq Unified Manager Linux<9.11p1
Netapp Active Iq Unified Manager Vmware Vsphere<9.11p1
Netapp Active Iq Unified Manager Windows<9.11p1
CVE-2022-23239
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions prior to 9.11P1 are susceptible to a vulnerability which allows administrative users to perform a Stored Cross-Site ...
Netapp Active Iq Unified Manager Linux<9.11p1
Netapp Active Iq Unified Manager Vmware Vsphere<9.11p1
Netapp Active Iq Unified Manager Windows<9.11p1
CVE-2023-24329
Python could allow a remote attacker to bypass security restrictions, caused by a flaw in the urllib.parse component. By sending a specially-crafted request using URL starts with blank characters, an ...
IBM QRadar SIEM<=7.5 - 7.5.0 UP7
redhat/python<3.11
ubuntu/python2.7<2.7.6-8ubuntu0.6+
ubuntu/python2.7<2.7.12-1ubuntu0~16.04.18+
ubuntu/python3.10<3.10.6-1~22.04.2ubuntu1.1
ubuntu/python3.10<3.10.7-1ubuntu0.4
and 23 more
CVE-2023-23915
A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using it...
redhat/curl<7.88.0
IBM IBM® Engineering Requirements Management DOORS<=9.7.2.7
IBM IBM® Engineering Requirements Management DOORS Web Access<=9.7.2.7
Haxx Curl>=7.77.0<7.88.0
Netapp Active Iq Unified Manager Vmware Vsphere
NetApp Clustered Data ONTAP=9.0
and 19 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203