NetApp Ontap 9

CPE Details

NetApp Ontap 9
netapp
ontap
9
2023-12-16
03h28 +00:00
2023-12-16
03h28 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:netapp:ontap:9:*:*:*:*:*:*:*

Informations

Vendor

netapp

Product

ontap

Version

9

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-27316 2024-04-04 19h21 +00:00 HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413 response. If a client does not stop sending headers, this leads to memory exhaustion.
7.5
High
CVE-2024-28757 2024-03-10 00h00 +00:00 libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCreate).
7.5
High
CVE-2023-27536 2023-03-30 00h00 +00:00 An authentication bypass vulnerability exists libcurl <8.0.0 in the connection reuse feature which can reuse previously established connections with incorrect user permissions due to a failure to check for changes in the CURLOPT_GSSAPI_DELEGATION option. This vulnerability affects krb5/kerberos/negotiate/GSSAPI transfers and could potentially result in unauthorized access to sensitive information. The safest option is to not reuse connections if the CURLOPT_GSSAPI_DELEGATION option has been changed.
5.9
Medium