Latest netapp oncommand unified manager vmware vsphere Vulnerabilities

CVE-2019-18276
An issue was discovered in disable_priv_mode in shell.c in GNU Bash through 5.0 patch 11. By default, if Bash is run with its effective UID not equal to its real UID, it will drop privileges by settin...
IBM Cloud Pak for Security (CP4S)<=1.7.2.0
IBM Cloud Pak for Security (CP4S)<=1.7.1.0
IBM Cloud Pak for Security (CP4S)<=1.7.0.0
GNU Bash<=5.0
GNU Bash=5.0-beta1
GNU Bash=5.0-beta2
and 16 more
CVE-2019-5482
cURL libcurl is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by the tftp_receive_packet function. By sending specially-crafted request containing an OACK without the ...
debian/curl
debian/curl<=7.52.1-5+deb9u9<=7.52.1-1<=7.64.0-4<=7.65.3-1
IBM Security Guardium<=10.5
IBM Security Guardium<=10.6
IBM Security Guardium<=11.0
IBM Security Guardium<=11.1
and 32 more
CVE-2019-5443
A non-privileged user or program can put code and a config file in a known non-privileged path (under C:/usr/local/) that will make curl <= 7.65.1 automatically run the code (as an openssl "engine") o...
Haxx Curl<=7.65.1
Microsoft Windows
Oracle Enterprise Manager Ops Center=12.3.3
Oracle Enterprise Manager Ops Center=12.4.0
Oracle HTTP Server=12.2.1.3.0
Oracle HTTP Server=12.2.1.4.0
and 8 more
CVE-2019-5495
OnCommand Unified Manager for VMware vSphere, Linux and Windows prior to 9.5 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via ...
Netapp Oncommand Unified Manager Linux<9.5
Netapp Oncommand Unified Manager Vmware Vsphere<9.5
Netapp Oncommand Unified Manager Windows<9.5
CVE-2019-2426
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to ex...
Oracle JDK=1.7.0-update201
Oracle JDK=1.8.0-update191
Oracle JDK=1.8.0-update192
Oracle JDK=11.0.1
Oracle JRE=1.7.0-update201
Oracle JRE=1.8.0-update191
and 10 more
CVE-2019-2502
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.13 and prior. Easily exploitable vulnerability allows high privileged a...
redhat/mysql<8.0.14
Oracle MySQL>=8.0.0<=8.0.13
Netapp Oncommand Unified Manager>=7.3
Microsoft Windows
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
and 2 more
CVE-2019-2449
Oracle Java SE 8u201 fixes an unspecified vulnerability in the Deployment component (<a href="https://access.redhat.com/security/cve/CVE-2019-2449">CVE-2019-2449</a>). Upstream has CVSS scored this i...
redhat/java<1.8.0-ibm-1:1.8.0.5.30-1jpp.1.el6_10
redhat/java<1.8.0-ibm-1:1.8.0.5.30-1jpp.1.el7
redhat/java<1.8.0-ibm-1:1.8.0.5.35-3.el8_0
Oracle JDK=1.8.0-update192
Oracle JRE=1.8.0-update192
Redhat Satellite=5.8
and 14 more
CVE-2018-3280
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: JSON). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privil...
Oracle MySQL>=8.0.0<=8.0.12
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
NetApp OnCommand Workflow Automation
Netapp Snapcenter
Netapp Storage Automation Store
and 2 more
CVE-2018-3286
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability al...
Oracle MySQL>=8.0.0<=8.0.12
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
NetApp OnCommand Workflow Automation
Netapp Snapcenter
Netapp Storage Automation Store
and 2 more
CVE-2018-3285
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Windows). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high pri...
Oracle MySQL>=8.0.0<=8.0.12
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
NetApp OnCommand Workflow Automation
Netapp Snapcenter
Netapp Storage Automation Store
and 2 more
CVE-2018-3279
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Roles). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows ...
Oracle MySQL>=8.0.0<=8.0.12
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
NetApp OnCommand Workflow Automation
Netapp Snapcenter
Netapp Storage Automation Store
and 2 more
CVE-2018-3195
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privile...
Oracle MySQL>=8.0.0<=8.0.12
Netapp Oncommand Unified Manager>=7.3
Microsoft Windows
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
NetApp OnCommand Workflow Automation
and 1 more
CVE-2018-3186
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high p...
Oracle MySQL>=8.0.0<=8.0.12
Netapp Oncommand Unified Manager>=7.3
Microsoft Windows
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
NetApp OnCommand Workflow Automation
and 1 more
CVE-2018-3182
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DML). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low privileg...
Oracle MySQL>=8.0.0<=8.0.12
Netapp Oncommand Unified Manager>=7.3
Microsoft Windows
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
NetApp OnCommand Workflow Automation
and 1 more
CVE-2018-3170
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows high privile...
Oracle MySQL>=8.0.0<=8.0.12
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
NetApp OnCommand Workflow Automation
Netapp Snapcenter
Netapp Oncommand Unified Manager>=7.3
and 1 more
CVE-2018-3137
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 8.0.12 and prior. Easily exploitable vulnerability allows low pr...
Oracle MySQL>=8.0.0<=8.0.12
NetApp OnCommand Insight
Netapp Oncommand Unified Manager Vmware Vsphere>=9.4
NetApp OnCommand Workflow Automation
Netapp Snapcenter
Netapp Storage Automation Store
and 2 more
CVE-2018-3156
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable...
debian/mariadb-10.0
debian/mysql-5.5
debian/mysql-5.7
redhat/mysql<5.6.42
redhat/mysql<5.7.24
redhat/mysql<8.0.13
and 37 more
CVE-2018-3278
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: RBR). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploi...
debian/mysql-5.5
debian/mysql-5.7
redhat/mysql<5.6.42
redhat/mysql<5.7.24
redhat/mysql<8.0.13
ubuntu/mysql-5.6<5.6.42
and 21 more
CVE-2018-3144
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Audit). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploi...
debian/mysql-5.5
debian/mysql-5.7
redhat/mysql<5.7.24
redhat/mysql<8.0.13
ubuntu/mysql-5.7<5.7.24-0ubuntu0.18.04.1
ubuntu/mysql-5.7<5.7.24-0ubuntu0.18.10.1
and 18 more
CVE-2018-3283
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Logging). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Difficult to exploit vulner...
debian/mysql-5.5
debian/mysql-5.7
redhat/mysql<5.7.24
redhat/mysql<8.0.13
ubuntu/mysql-5.7<5.7.24-0ubuntu0.18.04.1
ubuntu/mysql-5.7<5.7.24-0ubuntu0.18.10.1
and 18 more
CVE-2018-3133
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected are 5.5.61 and prior, 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and...
debian/mysql-5.5
debian/mysql-5.7
redhat/mysql<5.5.62
redhat/mysql<5.6.42
redhat/mysql<5.7.24
redhat/mysql<8.0.13
and 34 more
CVE-2018-3276
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Memcached). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily ...
debian/mysql-5.5
debian/mysql-5.7
redhat/mysql<5.6.42
redhat/mysql<5.7.24
redhat/mysql<8.0.13
ubuntu/mysql-5.6<5.6.42
and 21 more
CVE-2018-3155
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Parser). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerabi...
redhat/mysql<5.7.24
redhat/mysql<8.0.13
debian/mysql-5.5
debian/mysql-5.7
ubuntu/mysql-5.7<5.7.24-0ubuntu0.18.04.1
ubuntu/mysql-5.7<5.7.24-0ubuntu0.18.10.1
and 18 more
CVE-2018-3143
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable...
redhat/mysql<5.6.42
redhat/mysql<5.7.24
redhat/mysql<8.0.13
redhat/mariadb<10.3.11
redhat/mariadb<10.2.19
redhat/mariadb<10.1.37
and 37 more
CVE-2018-3247
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Merge). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily expl...
debian/mysql-5.5
debian/mysql-5.7
redhat/mysql<5.6.42
redhat/mysql<5.7.24
redhat/mysql<8.0.13
ubuntu/mysql-5.6<5.6.42
and 21 more
CVE-2018-3187
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulner...
redhat/mysql<5.7.24
redhat/mysql<8.0.13
debian/mysql-5.5
debian/mysql-5.7
ubuntu/mysql-5.7<5.7.24-0ubuntu0.18.04.1
ubuntu/mysql-5.7<5.7.24-0ubuntu0.18.10.1
and 18 more
CVE-2018-3185
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability all...
debian/mysql-5.5
debian/mysql-5.7
redhat/mysql<5.7.24
redhat/mysql<8.0.13
redhat/mariadb<10.3.11
redhat/mariadb<10.2.19
and 22 more
CVE-2018-3251
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.6.41 and prior, 5.7.23 and prior and 8.0.12 and prior. Easily exploitable...
debian/mariadb-10.0
debian/mysql-5.5
debian/mysql-5.7
redhat/mysql<5.6.42
redhat/mysql<5.7.24
redhat/mysql<8.0.13
and 37 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203