Active Iq Unified Manager

active_iq_unified_manager

Vendor: Netapp • 848 CVEs

CVEs (848)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-15219 5Canonical DebianLinux+2 more 9Active Iq Unified Manager Data Availability ServicesDebian Linux+6 more Nov 21, 2024 Aug 19, 2019 N/A· v4 4.6 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver.
CVE-2019-15218 6Canonical DebianLinux+3 more 10Active Iq Unified Manager Data Availability ServicesDebian Linux+7 more Nov 21, 2024 Aug 19, 2019 N/A· v4 4.6 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver.
CVE-2019-15217 5Canonical DebianLinux+2 more 9Active Iq Unified Manager Data Availability ServicesDebian Linux+6 more Nov 21, 2024 Aug 19, 2019 N/A· v4 4.6 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver.
CVE-2019-15216 5Canonical DebianLinux+2 more 9Active Iq Unified Manager Data Availability ServicesDebian Linux+6 more Nov 21, 2024 Aug 19, 2019 N/A· v4 4.6 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver.
CVE-2019-15215 5Canonical DebianLinux+2 more 9Active Iq Unified Manager Data Availability ServicesDebian Linux+6 more Nov 21, 2024 Aug 19, 2019 N/A· v4 4.6 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver.
CVE-2019-15213 3Linux NetappOpensuse 7Active Iq Unified Manager Data Availability ServicesH410c Firmware+4 more May 28, 2026 Aug 19, 2019 N/A· v4 4.6 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.
CVE-2019-15212 5Canonical DebianLinux+2 more 9Active Iq Unified Manager Data Availability ServicesDebian Linux+6 more Nov 21, 2024 Aug 19, 2019 N/A· v4 4.6 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.
CVE-2019-15211 5Canonical DebianLinux+2 more 9Active Iq Unified Manager Data Availability ServicesDebian Linux+6 more Nov 21, 2024 Aug 19, 2019 N/A· v4 4.6 MEDIUM· v3 4.9 MEDIUM· v2 An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c does not...Show more An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c does not properly allocate memory.Show less
CVE-2019-15118 5Canonical DebianLinux+2 more 10Active Iq Unified Manager Data Availability ServicesDebian Linux+7 more Nov 21, 2024 Aug 16, 2019 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 check_input_term in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles recursion, leading to kernel stack exhaustion.
CVE-2019-15098 5Canonical DebianLinux+2 more 8Active Iq Performance Analytics Services Active Iq Unified ManagerData Availability Services+5 more Nov 21, 2024 Aug 16, 2019 N/A· v4 4.6 MEDIUM· v3 4.9 MEDIUM· v2 drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
CVE-2019-14379 7Apple DebianFasterxml+4 more 24Active Iq Unified Manager Banking PlatformCommunications Diameter Signaling Router+21 more Nov 21, 2024 Jul 29, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), leading to remote code ex...Show more SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing when ehcache is used (because of net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup), leading to remote code execution.Show less
CVE-2019-13990 5Apache AtlassianNetapp+2 more 31Active Iq Unified Manager Apache Batik MapviewerBanking Enterprise Originations+28 more Nov 21, 2024 Jul 26, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 initDocumentParser in xml/XMLSchedulingDataProcessor.java in Terracotta Quartz Scheduler through 2.3.0 allows XXE attacks via a job description.
CVE-2018-20855 3Linux NetappOpensuse 6Active Iq Performance Analytics Services Active Iq Unified ManagerData Availability Services+3 more Nov 21, 2024 Jul 26, 2019 N/A· v4 3.3 LOW· v3 2.1 LOW· v2 An issue was discovered in the Linux kernel before 4.18.7. In create_qp_common in drivers/infiniband/hw/mlx5/qp.c, mlx5_ib_create_qp_resp was never initialized, resulting in a leak of stack memory to userspace.
CVE-2019-10744 5F5 LodashNetapp+2 more 21Active Iq Unified Manager Banking Extensibility WorkbenchBig Ip Access Policy Manager+18 more Nov 21, 2024 Jul 26, 2019 N/A· v4 9.1 CRITICAL· v3 6.4 MEDIUM· v2 Versions of lodash lower than 4.17.12 are vulnerable to Prototype Pollution. The function defaultsDeep could be tricked into adding or modifying properties of Object.prototype using a constructor payload.
CVE-2019-10184 2Netapp Redhat 6Active Iq Unified Manager Jboss Data GridJboss Enterprise Application Platform+3 more Nov 21, 2024 Jul 25, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 undertow before version 2.0.23.Final is vulnerable to an information leak issue. Web apps may have their directory structures predicted through requests without trailing slashes via the api.
CVE-2019-13272 6Canonical DebianFedoraproject+3 more 22Active Iq Unified Manager Aff A700s FirmwareDebian Linux+19 more Nov 6, 2025 Jul 17, 2019 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by lev...Show more In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with a parent-child process relationship, where a parent drops privileges and calls execve (potentially allowing control by an attacker). One contributing factor is an object lifetime issue (which can also cause a panic). Another contributing factor is incorrect marking of a ptrace relationship as privileged, which is exploitable through (for example) Polkit's pkexec helper with PTRACE_TRACEME. NOTE: SELinux deny_ptrace might be a usable workaround in some environments.Show less
CVE-2017-12652 2Libpng Netapp 2Active Iq Unified Manager Libpng Jun 9, 2025 Jul 10, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 libpng before 1.6.32 does not properly check the length of chunks against the user limit.
CVE-2018-14550 3Libpng NetappOracle 5Active Iq Unified Manager Hyperion Infrastructure TechnologyLibpng+2 more Nov 21, 2024 Jul 10, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function get_token in pnm2png.c in pnm2png.
CVE-2019-13118 7Apple CanonicalFedoraproject+4 more 25Active Iq Unified Manager Cloud BackupClustered Data Ontap+22 more May 28, 2026 Jul 1, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid character/length combination could be passed to xsltNumberFormatDecimal, leading to a read of...Show more In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid character/length combination could be passed to xsltNumberFormatDecimal, leading to a read of uninitialized stack data.Show less
CVE-2019-10126 6Canonical DebianLinux+3 more 23A700s Firmware Active Iq Unified ManagerCn1610 Firmware+20 more Nov 21, 2024 Jun 14, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c might lead to memory corruption and possibly other consequences.

Previous 1...363738...43 Next