Latest netapp snapcenter server Vulnerabilities

CVE-2020-14791
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.21 and prior. Difficult to exploit vulnerability allows high privileged atta...
redhat/mysql<8.0.22
Oracle MySQL>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
and 4 more
CVE-2020-14789
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: FTS). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability all...
redhat/mysql<5.7.32
redhat/mysql<8.0.22
redhat/mariadb<10.5.7
redhat/mariadb<10.4.16
redhat/mariadb<10.3.26
redhat/mariadb<10.2.35
and 14 more
CVE-2020-14793
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily explo...
redhat/mysql<5.6.50
redhat/mysql<5.7.32
redhat/mysql<8.0.22
Oracle MySQL>=5.6.0<=5.6.49
Oracle MySQL>=5.7.0<=5.7.31
Oracle MySQL>=8.0.0<=8.0.21
and 8 more
CVE-2020-14800
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows ...
redhat/mysql<8.0.22
Oracle MySQL>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
and 1 more
CVE-2020-14799
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows ...
Oracle MySQL>=8.0.0<=8.0.20
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
NetApp SnapCenter Server
CVE-2020-14790
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allo...
redhat/mysql<5.7.32
redhat/mysql<8.0.22
Oracle MySQL>=5.7.0<=5.7.31
Oracle MySQL>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
and 6 more
CVE-2020-14794
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privil...
redhat/mysql<8.0.22
Oracle MySQL>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
and 4 more
CVE-2020-14786
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: PS). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privileged at...
redhat/mysql<8.0.22
Oracle MySQL>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
and 4 more
CVE-2020-14785
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privil...
redhat/mysql<8.0.22
Oracle MySQL>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
and 4 more
CVE-2020-14777
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privil...
redhat/mysql<8.0.22
Oracle MySQL>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
and 4 more
CVE-2020-14773
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows high privil...
redhat/mysql<8.0.22
Oracle MySQL>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows>=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
NetApp OnCommand Insight
NetApp OnCommand Workflow Automation
and 4 more
CVE-2020-14769
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easily explo...
redhat/mysql<5.6.50
redhat/mysql<5.7.32
redhat/mysql<8.0.22
Oracle MySQL>=5.6.0<=5.6.49
Oracle MySQL>=5.7.0<=5.7.31
Oracle MySQL>=8.0.0<=8.0.21
and 8 more
CVE-2020-14775
Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 5.7.31 and prior and 8.0.21 and prior. Easily exploitable vulnerability allows l...
redhat/mysql<5.7.32
redhat/mysql<8.0.22
Oracle MySQL>=5.7.0<=5.7.31
Oracle MySQL>=8.0.0<=8.0.21
Netapp Active Iq Unified Manager Windows<=7.3
Netapp Active Iq Unified Manager Vmware Vsphere>=9.5
and 6 more
CVE-2020-14672
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 5.6.49 and prior, 5.7.31 and prior and 8.0.21 and prior. Easil...
redhat/mysql<5.6.50
redhat/mysql<5.7.32
redhat/mysql<8.0.22
Oracle MySQL>=5.6.0<=5.6.49
Oracle MySQL>=5.7.0<=5.7.31
Oracle MySQL>=8.0.0<8.0.21
and 8 more
CVE-2020-11023
### Impact Passing HTML containing `<option>` elements from untrusted sources - even after sanitizing them - to one of jQuery's DOM manipulation methods (i.e. `.html()`, `.append()`, and others) may e...
maven/org.webjars.npm:jquery>=1.0.3<3.5.0
nuget/jQuery>=1.0.3<3.5.0
rubygems/jquery-rails<4.4.0
npm/jquery>=1.0.3<3.5.0
debian/jquery
debian/node-jquery<=2.2.4+dfsg-4
and 105 more
CVE-2018-5482
NetApp SnapCenter Server prior to 4.1 does not set the secure flag for a sensitive cookie in an HTTPS session which can allow the transmission of the cookie in plain text over an unencrypted channel.
NetApp SnapCenter Server<4.1
CVE-2017-15515
NetApp SnapCenter Server prior to 4.0 is susceptible to cross site scripting vulnerability that could allow a privileged user to inject arbitrary scripts into the custom secondary policy label field.
NetApp SnapCenter Server<4.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203