NetApp Clustered Data ONTAP 9.10.1

CPE Details

NetApp Clustered Data ONTAP 9.10.1
netapp
clustered_data_ontap
9.10.1
2024-02-14
16h22 +00:00
2024-02-14
16h22 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:netapp:clustered_data_ontap:9.10.1:-:*:*:*:*:*:*

Informations

Vendor

netapp

Product

clustered_data_ontap

Version

9.10.1

Update

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-21982 2024-01-11 23h32 +00:00 ONTAP versions 9.4 and higher are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information to unprivileged attackers when the object-store profiler command is being run by an administrative user.
6.5
Medium
CVE-2018-16890 2019-02-06 19h00 +00:00 libcurl versions from 7.36.0 to before 7.64.0 is vulnerable to a heap buffer out-of-bounds read. The function handling incoming NTLM type-2 messages (`lib/vauth/ntlm.c:ntlm_decode_type2_target`) does not validate incoming data correctly and is subject to an integer overflow vulnerability. Using that overflow, a malicious or broken NTLM server could trick libcurl to accept a bad length + offset combination that would lead to a buffer read out-of-bounds.
7.5
High
CVE-2019-3823 2019-02-06 19h00 +00:00 libcurl versions from 7.34.0 to before 7.64.0 are vulnerable to a heap out-of-bounds read in the code handling the end-of-response for SMTP. If the buffer passed to `smtp_endofresp()` isn't NUL terminated and contains no character ending the parsed number, and `len` is set to 5, then the `strtol()` call reads beyond the allocated buffer. The read contents will not be returned to the caller.
7.5
High