Home/Product/netapp e series performance analyzer
Product

netapp e series performance analyzer

61 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2022-23491
all versions
Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the id
6.8MEDIUM
 CVE-2022-45061
all versions
An issue was discovered in Python before 3.11.1. An unnecessary quadratic algorithm exists in one path when processing some inputs
7.5HIGH
 CVE-2022-31123
all versions
Grafana is an open source observability and data visualization platform. Versions prior to 9.1.8 and 8.5.14 are vulnerable to a by
6.1MEDIUM
 CVE-2021-3999
all versions
A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of
7.8HIGH
 CVE-2022-31107
all versions
Grafana is an open-source platform for monitoring and observability. In versions 5.3 until 9.0.3, 8.5.9, 8.4.10, and 8.3.10, it is
7.1HIGH
 CVE-2022-31097
all versions
Grafana is an open-source platform for monitoring and observability. Versions on the 8.x and 9.x branch prior to 9.0.3, 8.5.9, 8.4
7.3HIGH
 CVE-2022-21713
< 3.0
Grafana is an open-source platform for monitoring and observability. Affected versions of Grafana expose multiple API endpoints wh
4.3MEDIUM
 CVE-2022-21703
< 3.0
Grafana is an open-source platform for monitoring and observability. Affected versions are subject to a cross site request forgery
6.3MEDIUM
 CVE-2022-21702
< 3.0
Grafana is an open-source platform for monitoring and observability. In affected versions an attacker could serve HTML content thr
6.5MEDIUM
 CVE-2021-4044
all versions
Internally libssl in OpenSSL calls X509_verify_cert() on the client side to verify a certificate supplied by a server. That functi
7.5HIGH
 CVE-2021-26707
all versions
The merge-deep library before 3.0.3 for Node.js can be tricked into overwriting properties of Object.prototype or adding new prope
9.8CRITICAL
 CVE-2021-33587
all versions
The css-what package 4.0.0 through 5.0.0 for Node.js does not ensure that attribute parsing has Linear Time Complexity relative to
7.5HIGH
 CVE-2021-33623
all versions
The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-servi
7.5HIGH
 CVE-2021-32640
all versions
ws is an open source WebSocket client and server library for Node.js. A specially crafted value of the Sec-Websocket-Protocol he
5.3MEDIUM
 CVE-2021-23383
all versions
The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile temp
5.6MEDIUM
 CVE-2021-28165
< 3.0
In Eclipse Jetty 7.2.2 to 9.4.38, 10.0.0.alpha0 to 10.0.1, and 11.0.0.alpha0 to 11.0.1, CPU usage can reach 100% upon receiving a
7.5HIGH
 CVE-2021-28164
all versions
In Eclipse Jetty 9.4.37.v20210219 to 9.4.38.v20210224, the default compliance mode allows requests with URIs that contain %2e or %
5.3MEDIUM
 CVE-2021-28163
all versions
In Eclipse Jetty 9.4.32 to 9.4.38, 10.0.0.beta2 to 10.0.1, and 11.0.0.beta2 to 11.0.1, if a user uses a webapps directory that is
2.7LOW
 CVE-2021-3449
all versions
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renego
5.9MEDIUM
 CVE-2021-21267
all versions
Schema-Inspector is an open-source tool to sanitize and validate JS objects (npm package schema-inspector). In before version 2.0.
7.5HIGH
 CVE-2021-27358
all versions
The snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to trigger a Denial of Service v
7.5HIGH
 CVE-2021-20231
all versions
A flaw was found in gnutls. A use after free issue in client sending key_share extension may lead to memory corruption and other c
9.8CRITICAL
 CVE-2021-22884
all versions
Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes “localhos
7.5HIGH
 CVE-2021-22883
all versions
Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to a denial of service attack when too many connection attempt
7.5HIGH
 CVE-2021-27219
all versions
An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on
7.5HIGH
 CVE-2021-27218
all versions
An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer
7.5HIGH
 CVE-2020-14782
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affec
3.7LOW
 CVE-2020-11110
all versions
Grafana through 6.7.1 allows stored XSS due to insufficient input protection in the originalUrl field, which allows an attacker to
5.4MEDIUM
 CVE-2020-14664
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: JavaFX). The supported version that is affected is Java SE: 8u2
8.3HIGH
 CVE-2020-14621
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected a
5.3MEDIUM
 CVE-2020-14593
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are
7.4HIGH
 CVE-2020-14583
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affec
8.3HIGH
 CVE-2020-14581
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are
3.7LOW
 CVE-2020-14579
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affec
3.7LOW
 CVE-2020-14578
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affec
3.7LOW
 CVE-2020-14577
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JSSE). Supported versions that are affected a
3.7LOW
 CVE-2020-14556
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affec
4.8MEDIUM
 CVE-2020-13379
all versions
The avatar feature in Grafana 3.0.1 through 7.0.1 has an SSRF Incorrect Access Control issue. This vulnerability allows any unauth
8.2HIGH
 CVE-2020-1967
all versions
Server or client applications that call the SSL_check_chain() function during or after a TLS 1.3 handshake may crash due to a NULL
7.5HIGH
 CVE-2020-2830
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrency). Supported versions that are aff
5.3MEDIUM
 CVE-2020-2816
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 11.0.6
7.5HIGH
 CVE-2020-2805
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affec
8.3HIGH
 CVE-2020-2803
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affec
8.3HIGH
 CVE-2020-2800
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Lightweight HTTP Server). Supported versions
4.8MEDIUM
 CVE-2020-2781
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JSSE). Supported versions that are affected a
5.3MEDIUM
 CVE-2020-2778
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 11.0.6
3.7LOW
 CVE-2020-2773
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affect
3.7LOW
 CVE-2020-2767
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 11.0.6
4.8MEDIUM
 CVE-2020-2757
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
3.7LOW
 CVE-2020-2756
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
3.7LOW
 CVE-2020-2755
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting). Supported versions that are affec
3.7LOW
 CVE-2020-2659
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
3.7LOW
 CVE-2020-2654
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7
3.7LOW
 CVE-2020-2604
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
8.1HIGH
 CVE-2020-2601
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affect
6.8MEDIUM
 CVE-2020-2593
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affe
4.8MEDIUM
 CVE-2020-2590
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affect
3.7LOW
 CVE-2020-2585
all versions
Vulnerability in the Java SE product of Oracle Java SE (component: JavaFX). The supported version that is affected is Java SE: 8u2
5.9MEDIUM
 CVE-2020-2583
all versions
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are a
3.7LOW
 CVE-2019-13272
all versions
In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wa
7.8HIGH
 CVE-2019-13118
all versions
In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid char
5.3MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin