Latest netapp e-series performance analyzer Vulnerabilities

CVE-2022-45061
A vulnerability was discovered in Python. A quadratic algorithm exists when processing inputs to the IDNA (RFC 3490) decoder, such that a crafted unreasonably long name being presented to the decoder ...
redhat/python3<0:3.6.8-48.el8_7.1
redhat/python3.9<0:3.9.14-1.el9_1.2
IBM Cloud Pak for Security<=1.10.0.0 - 1.10.11.0
IBM QRadar Suite Software<=1.10.12.0 - 1.10.16.0
redhat/python<3.11.1
redhat/python<3.10.9
and 51 more
CVE-2022-31123
Grafana is an open source observability and data visualization platform. Versions prior to 9.1.8 and 8.5.14 are vulnerable to a bypass in the plugin signature verification. An attacker can convince a ...
Grafana Grafana>=7.0.0<8.5.14
Grafana Grafana>=9.0.0<9.1.8
Netapp E-series Performance Analyzer
CVE-2022-31107
Grafana is an open-source platform for monitoring and observability. In versions 5.3 until 9.0.3, 8.5.9, 8.4.10, and 8.3.10, it is possible for a malicious user who has authorization to log into a Gra...
redhat/grafana<0:7.5.11-3.el8_6
redhat/grafana<0:6.2.2-9.el8_1
redhat/grafana<0:6.3.6-5.el8_2
redhat/grafana<0:7.3.6-5.el8_4
redhat/grafana<0:7.5.11-5.el9_0
Grafana Grafana>=5.3.0<8.3.10
and 4 more
CVE-2022-31097
Grafana is an open-source platform for monitoring and observability. Versions on the 8.x and 9.x branch prior to 9.0.3, 8.5.9, 8.4.10, and 8.3.10 are vulnerable to stored cross-site scripting via the ...
Grafana Grafana>=8.0.0<8.3.10
Grafana Grafana>=8.4.0<8.4.10
Grafana Grafana>=8.5.0<8.5.9
Grafana Grafana>=9.0.0<9.0.3
Netapp E-series Performance Analyzer
CVE-2022-21713
Grafana is an open-source platform for monitoring and observability. Affected versions of Grafana expose multiple API endpoints which do not properly handle user authorization. `/teams/:teamId` will a...
Grafana Grafana>=5.0.0<7.5.15
Grafana Grafana>=8.0.0<8.3.5
Grafana Grafana=5.0.0-beta1
Grafana Grafana=5.0.0-beta2
Grafana Grafana=5.0.0-beta3
Grafana Grafana=5.0.0-beta4
and 9 more
CVE-2022-21703
A Cross-site request forgery (CSRF) vulnerability was found in Grafana. This flaw allows anonymous attackers to elevate their privileges by mounting cross-origin attacks against authenticated high-pri...
redhat/grafana<0:7.5.15-3.el8
redhat/grafana<0:7.5.15-3.el9
Grafana Grafana>=3.0.1<7.5.15
Grafana Grafana>=8.0.0<8.3.5
Grafana Grafana=3.0.0-beta1
Grafana Grafana=3.0.0-beta2
and 13 more
CVE-2022-21702
Grafana is an open-source platform for monitoring and observability. In affected versions an attacker could serve HTML content thru the Grafana datasource or plugin proxy and trick a user to visit thi...
redhat/grafana<7.5.15
redhat/grafana<8.3.5
redhat/grafana<0:7.5.15-3.el8
redhat/grafana<0:7.5.15-3.el9
Grafana Grafana>=2.0.1<7.5.15
Grafana Grafana>=8.0.0<8.3.5
and 6 more
CVE-2021-4044
Internally libssl in OpenSSL calls X509_verify_cert() on the client side to verify a certificate supplied by a server. That function may return a negative return value to indicate an internal error (f...
rust/openssl-src>=300.0.0<300.0.4
OpenSSL OpenSSL<1.0.2
OpenSSL OpenSSL=1.1.0
OpenSSL OpenSSL=3.0.0
Netapp Cloud Backup
Netapp E-series Performance Analyzer
and 27 more
CVE-2021-3999
A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input bu...
GNU glibc<2.31
Debian Debian Linux=10.0
Debian Debian Linux=11.0
Netapp E-series Performance Analyzer
Netapp Nfs Plug-in Vmware Vaai
NetApp ONTAP Select Deploy administration utility
and 26 more
CVE-2021-33587
The css-what package 4.0.0 through 5.0.0 for Node.js does not ensure that attribute parsing has Linear Time Complexity relative to the size of the input.
Css-what Project Css-what=4.0.0
Css-what Project Css-what=5.0.0
Netapp E-series Performance Analyzer
npm/css-what>=4.0.0<=5.0.0
CVE-2021-33623
@rkesters/gnuplot is an easy to use node module to draw charts using gnuplot and ps2pdf. The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular express...
npm/trim-newlines=4.0.0
npm/trim-newlines<3.0.1
Trim-newlines Project Trim-newlines<3.0.1
Trim-newlines Project Trim-newlines>=4.0.0<4.0.1
Netapp E-series Performance Analyzer
Debian Debian Linux=10.0
and 1 more
CVE-2021-32640
WebSockets ws library for Node.js is vulnerable to a denial of service, caused by a regular expression denial of service (ReDOS) flaw in the in Sec-Websocket-Protocol header. By sending a specially-cr...
Ws Project Ws>=5.0.0<6.2.2
Ws Project Ws>=7.0.0<7.4.6
Netapp E-series Performance Analyzer
IBM Planning Analytics<=2.0
CVE-2021-23383
The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.
Handlebarsjs Handlebars<4.7.7
Netapp E-series Performance Analyzer
npm/handlebars<4.7.7
redhat/handlebars<4.7.7
<4.7.7
CVE-2021-28165
### Impact When using SSL/TLS with Jetty, either with HTTP/1.1, HTTP/2, or WebSocket, the server may receive an invalid large (greater than 17408) TLS frame that is incorrectly handled, causing CPU re...
maven/org.eclipse.jetty:jetty-server>=11.0.0<11.0.2
maven/org.eclipse.jetty:jetty-server>=10.0.0<10.0.2
maven/org.eclipse.jetty:jetty-server>=7.2.2<9.4.39
redhat/rh-eclipse-jetty<0:9.4.40-1.1.el7_9
redhat/jenkins<0:2.277.3.1620393611-1.el8
redhat/runc<0:1.0.0-95.rhaos4.8.gitcd80260.el8
and 29 more
CVE-2021-28163
Eclipse Jetty could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw when the ${jetty.base} directory or the ${jetty.base}/webapps directory is a symlink. By sen...
redhat/rh-eclipse-jetty<0:9.4.40-1.1.el7_9
redhat/jenkins<0:2.277.3.1620393611-1.el8
redhat/runc<0:1.0.0-95.rhaos4.8.gitcd80260.el8
redhat/jetty<9.4.39
redhat/jetty<10.0.2
redhat/jetty<11.0.2
and 33 more
CVE-2021-28164
Eclipse Jetty could allow a remote attacker to obtain sensitive information, caused by improper input validation by the default compliance mode. By sending specially-crafted requests with URIs that co...
redhat/rh-eclipse-jetty<0:9.4.40-1.1.el7_9
redhat/jetty<9.4.39
Eclipse Jetty=9.4.37-20210219
Eclipse Jetty=9.4.38-20210224
NetApp Cloud Manager
Netapp E-series Performance Analyzer
and 16 more
CVE-2021-3449
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it...
rust/openssl-src<111.15.0
debian/openssl
IBM Cognos Analytics<=12.0.0-12.0.1
IBM Cognos Analytics<=11.2.0-11.2.4 FP2
IBM Cognos Analytics<=11.1.1-11.1.7 FP7
OpenSSL OpenSSL>=1.1.1<1.1.1k
and 202 more
CVE-2021-21267
Schema-inspector Project Schema-inspector<2.0.0
Netapp E-series Performance Analyzer
NetApp OnCommand Insight
CVE-2021-22883
Node.js is vulnerable to a denial of service, caused by a file descriptor leak. By making multiple attempts to connect with an 'unknownProtocol', an attacker could exploit this vulnerability to lead t...
redhat/rh-nodejs10-nodejs<0:10.24.0-1.el7
redhat/rh-nodejs14-nodejs<0:14.16.0-1.el7
redhat/rh-nodejs12-nodejs<0:12.21.0-1.el7
ubuntu/nodejs<10.19.0~dfsg-3ubuntu1.2
ubuntu/nodejs<12.21.0~dfsg-1
Nodejs Node.js>=10.0.0<10.24.0
and 17 more
CVE-2021-22884
Node.js is vulnerable to a denial of service, caused by an error when the whitelist includes "localhost6". By controlling the victim's DNS server or spoofing its responses, an attacker could exploit t...
ubuntu/nodejs<8.10.0~dfsg-2ubuntu0.4+
ubuntu/nodejs<10.19.0~dfsg-3ubuntu1.2
ubuntu/nodejs<12.21.0~dfsg-1
debian/nodejs
redhat/rh-nodejs10-nodejs<0:10.24.0-1.el7
redhat/rh-nodejs14-nodejs<0:14.16.0-1.el7
and 27 more
CVE-2021-27358
The snapshot feature in Grafana before 7.4.2 can allow an unauthenticated remote attackers to trigger a Denial of Service via a remote API call if a commonly used configuration is set. ### Specific Go...
go/github.com/grafana/grafana>=6.7.3<7.4.2
redhat/grafana<7.4.2
redhat/grafana<0:7.5.9-4.el8
Grafana Grafana>=6.7.3<=7.4.1
Netapp E-series Performance Analyzer
CVE-2021-27218
An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated mod...
redhat/mingw-glib2<0:2.66.7-2.el8
redhat/glib2<0:2.56.4-10.el8_4.1
IBM QRadar SIEM<=7.5.0 GA
IBM QRadar SIEM<=7.4.3 GA - 7.4.3 FP4
IBM QRadar SIEM<=7.3.3 GA - 7.3.3 FP10
redhat/glib<2.66.7
and 10 more
CVE-2021-27219
An integer wraparound was discovered in glib due to passing a 64 bit sized value to function g_memdup() which accepts a 32 bits number as argument. An attacker may abuse this flaw when an application ...
redhat/glib2<0:2.28.8-11.el6_10
redhat/glib2<0:2.56.1-9.el7_9
redhat/glib2<0:2.42.2-6.el7_2
redhat/glib2<0:2.46.2-5.el7_3
redhat/glib2<0:2.50.3-4.el7_4
redhat/glib2<0:2.56.1-5.el7_6
and 19 more
CVE-2021-20231
GnuTLS is vulnerable to a denial of service, caused by a use-after-free issue in client sending key_share extension. By sending a specially-crafted request, an attacker could exploit this vulnerabilit...
IBM QRadar SIEM<=7.5.0 GA
IBM QRadar SIEM<=7.4.3 GA - 7.4.3 FP4
IBM QRadar SIEM<=7.3.3 GA - 7.3.3 FP10
redhat/gnutls<3.7.1
Gnu Gnutls>=3.6.3<3.7.1
Redhat Enterprise Linux=8.0
and 3 more
CVE-2020-14782
An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, low integrity impact, and no availability impact.
redhat/java<1.8.0-openjdk-1:1.8.0.272.b10-0.el6_10
redhat/java<11-openjdk-1:11.0.9.11-0.el7_9
redhat/java<1.8.0-openjdk-1:1.8.0.272.b10-1.el7_9
redhat/java<1.7.1-ibm-1:1.7.1.4.75-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.6.25-1jpp.1.el7
redhat/java<11-openjdk-1:11.0.9.11-0.el8_2
and 36 more
CVE-2020-14664
Oracle Java Runtime Environment HTML Rendering Out-Of-Bounds Write Remote Code Execution Vulnerability
Oracle Java Runtime Environment
Oracle JDK=1.8.0-update251
Oracle JRE=1.8.0-update251
NetApp 7-Mode Transition Tool
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vsphere>=9.5
and 13 more
CVE-2020-14578
A flaw was found in the DerInputStream class in the Libraries component of OpenJDK. A DER (Distinguished Encoding Rules) encoded input using indefinite length encoding not supported by the DerInputSt...
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el6_10
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el7_8
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.6.20-1jpp.1.el7
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el8_2
and 46 more
CVE-2020-14621
A flaw was found in the way the XMLSchemaValidator class in the JAXP component of OpenJDK enforced the "use-grammar-pool-only" feature. A specially-crafted XML file could possibly use this flaw to ma...
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el6_10
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el7_8
redhat/java<11-openjdk-1:11.0.8.10-0.el7_8
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.6.20-1jpp.1.el7
and 68 more
CVE-2020-14581
An unspecified vulnerability in Oracle Java SE and Java SE Embedded related to the 2D component could allow an unauthenticated attacker to obtain sensitive information resulting in a low confidentiali...
ubuntu/openjdk-8<8
ubuntu/openjdk-8<8
ubuntu/openjdk-8<8
ubuntu/openjdk-8<8
ubuntu/openjdk-8<8
ubuntu/openjdk-8<8
and 54 more
CVE-2020-14556
A flaw was found in the way the ForkJoinPool class in the Libraries component of OpenJDK handled its access control context. This could possibly lead to code being executed with incorrect permissions...
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el6_10
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el7_8
redhat/java<11-openjdk-1:11.0.8.10-0.el7_8
redhat/java<1.8.0-ibm-1:1.8.0.6.20-1jpp.1.el7
redhat/java<11-openjdk-1:11.0.8.10-0.el8_2
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el8_2
and 53 more
CVE-2020-14579
A flaw was found in the DerValue class in the Libraries component of OpenJDK. An incorrect implementation of the DerValue.equals() method could cause the class to raise an exception not declared to b...
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el6_10
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el7_8
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.6.20-1jpp.1.el7
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el8_2
and 46 more
CVE-2020-14593
A flaw was found in the way the imaging library in the 2D component of OpenJDK performed affine transformations of images. An untrusted Java application or applet could use this flaw to bypass certai...
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el6_10
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el7_8
redhat/java<11-openjdk-1:11.0.8.10-0.el7_8
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.6.20-1jpp.1.el7
and 56 more
CVE-2020-14577
A flaw was found in the way the JSSE component of OpenJDK performed TLS server name verification. The HostnameChecker class did not check if names stored in TLS server's X.509 certificate are in the ...
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el6_10
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el7_8
redhat/java<11-openjdk-1:11.0.8.10-0.el7_8
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.6.20-1jpp.1.el7
and 56 more
CVE-2020-14583
An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause low confidentiality impact, low integrity impact, and no availability impact...
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el6_10
redhat/java<1.8.0-openjdk-1:1.8.0.262.b10-0.el7_8
redhat/java<11-openjdk-1:11.0.8.10-0.el7_8
redhat/java<1.7.1-ibm-1:1.7.1.4.70-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.6.20-1jpp.1.el7
and 56 more
CVE-2020-13379
The avatar feature in Grafana (github.com/grafana/grafana/pkg/api/avatar) 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue that allows remote code execution. This vulnerability allows an...
go/github.com/grafana/grafana>=7.0.0<7.0.2
go/github.com/grafana/grafana>=3.0.1<6.7.4
redhat/grafana<7.0.2
redhat/grafana<6.7.4
redhat/servicemesh-grafana<0:6.2.2-38.el8
redhat/servicemesh-grafana<0:6.4.3-11.el8
and 15 more
CVE-2020-1967
Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL pointer dereference as a result of incorrect handling of the "signatu...
debian/openssl
OpenSSL OpenSSL>=1.1.1d<=1.1.1f
Debian Debian Linux=9.0
Debian Debian Linux=10.0
FreeBSD FreeBSD=12.1
Fedoraproject Fedora=30
and 33 more
CVE-2020-2767
Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 11.0.6 and 14. Difficult to exploit vulnerability allows unauthenticated att...
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
redhat/java<11-openjdk-1:11.0.7.10-1.el8_1
redhat/java<11-openjdk-1:11.0.7.10-1.el8_0
debian/openjdk-11
ubuntu/openjdk-14<14.0.1+7-1ubuntu1
ubuntu/openjdk-14<14.0.1+7-1
and 122 more
CVE-2020-2781
An unspecified vulnerability in Java SE related to the Java SE JSSE component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unknown ...
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.1.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.65-1jpp.1.el6_10
redhat/java<1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.2.el7_8
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
and 166 more
CVE-2020-2805
An unspecified vulnerability in Java SE related to the Java SE Libraries component could allow an unauthenticated attacker to take control of the system.
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.1.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.65-1jpp.1.el6_10
redhat/java<1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.2.el7_8
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
and 148 more
CVE-2020-2816
Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 11.0.6 and 14. Easily exploitable vulnerability allows unauthenticated attac...
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
redhat/java<11-openjdk-1:11.0.7.10-1.el8_1
redhat/java<11-openjdk-1:11.0.7.10-1.el8_0
ubuntu/openjdk-14<14.0.1+7-1ubuntu1
ubuntu/openjdk-14<14.0.1+7-1
ubuntu/openjdk-lts<11.0.7+10-2ubuntu2~18.04
and 121 more
CVE-2020-2778
Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 11.0.6 and 14. Difficult to exploit vulnerability allows unauthenticated att...
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
redhat/java<11-openjdk-1:11.0.7.10-1.el8_1
redhat/java<11-openjdk-1:11.0.7.10-1.el8_0
debian/openjdk-11
ubuntu/openjdk-14<14.0.1+7-1ubuntu1
ubuntu/openjdk-14<14.0.1+7-1
and 122 more
CVE-2020-2803
An unspecified vulnerability in multiple Oracle products could allow an unauthenticated attacker to take control of the system.
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.1.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.65-1jpp.1.el6_10
redhat/java<1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.2.el7_8
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
and 148 more
CVE-2020-2830
An unspecified vulnerability in Java SE related to the Java SE Concurrency component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using u...
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.1.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.65-1jpp.1.el6_10
redhat/java<1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.2.el7_8
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
and 152 more
CVE-2020-2800
An unspecified vulnerability in Java SE related to the Java SE Lightweight HTTP Server component could allow an unauthenticated attacker to cause low confidentiality impact, low integrity impact, and ...
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.1.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.65-1jpp.1.el6_10
redhat/java<1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.2.el7_8
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
and 148 more
CVE-2020-2773
An unspecified vulnerability in Java SE related to the Java SE Security component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unkn...
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.1.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.2.el7_8
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el7_8
redhat/java<1.8.0-ibm-1:1.8.0.6.25-1jpp.1.el7
and 157 more
CVE-2020-2757
An unspecified vulnerability in Java SE related to the Java SE Serialization component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using...
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.1.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.65-1jpp.1.el6_10
redhat/java<1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.2.el7_8
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
and 157 more
CVE-2020-2756
An unspecified vulnerability in Java SE related to the Java SE Serialization component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using...
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.1.el6_10
redhat/java<1.7.1-ibm-1:1.7.1.4.65-1jpp.1.el6_10
redhat/java<1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el6_10
redhat/java<1.7.0-openjdk-1:1.7.0.261-2.6.22.2.el7_8
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
and 156 more
CVE-2020-2755
An unspecified vulnerability in Java SE related to the Java SE Scripting component could allow an unauthenticated attacker to cause a denial of service resulting in a low availability impact using unk...
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el6_10
redhat/java<1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el6_10
redhat/java<11-openjdk-1:11.0.7.10-4.el7_8
redhat/java<1.8.0-openjdk-1:1.8.0.252.b09-2.el7_8
redhat/java<1.8.0-ibm-1:1.8.0.6.10-1jpp.1.el7
redhat/java<11-openjdk-1:11.0.7.10-1.el8_1
and 151 more
CVE-2020-11110
A flaw was found in grafana. The lack of URL sanitizing allows for stored XSS.
redhat/grafana<0:6.7.4-3.el8
Grafana Grafana<=6.7.1
Netapp E-series Performance Analyzer
redhat/grafana<6.7.2
go/github.com/grafana/grafana<=6.7.1
CVE-2020-2585
Vulnerability in the Java SE product of Oracle Java SE (component: JavaFX). The supported version that is affected is Java SE: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker...
Oracle JDK=1.8.0-update231
Oracle JRE=1.8.0-update231
Netapp Active Iq Unified Manager Vmware Vsphere
Netapp Active Iq Unified Manager Windows
Netapp Cloud Backup
Netapp E-series Performance Analyzer
and 9 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203