threat
engine
.sh
Back
·
··:··
Home
/
Product
/
netapp snapprotect
Product
netapp snapprotect
18 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2018-20839
all versions
systemd 242 changes the VT1 mode upon a logout, which allows attackers to read cleartext passwords in certain circumstances, such
4.3
MEDIUM
CVE-2019-11815
all versions
An issue was discovered in rds_tcp_kill_sock in net/rds/tcp.c in the Linux kernel before 5.0.8. There is a race condition leading
8.1
HIGH
CVE-2018-20836
all versions
An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in d
8.1
HIGH
CVE-2019-3844
all versions
It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binar
7.8
HIGH
CVE-2019-3843
all versions
It was discovered that a systemd service that uses DynamicUser property can create a SUID/SGID binary that would be allowed to run
7.8
HIGH
CVE-2019-3900
all versions
An infinite loop issue was found in the vhost_net kernel module in Linux Kernel up to and including v5.1-rc6, while handling incom
7.7
HIGH
CVE-2019-3882
all versions
A flaw was found in the Linux kernel's vfio interface implementation that permits violation of the user's locked memory limit. If
5.5
MEDIUM
CVE-2019-11486
all versions
The Siemens R3964 line discipline driver in drivers/tty/n_r3964.c in the Linux kernel before 5.0.8 has multiple race conditions.
7.0
HIGH
CVE-2019-3901
all versions
A race condition in perf_event_open() allows local attackers to leak sensitive data from setuid programs. As no relevant locks (in
4.7
MEDIUM
CVE-2019-10125
all versions
An issue was discovered in aio_poll() in fs/aio.c in the Linux kernel through 5.0.4. A file may be released by aio_poll_wake() if
9.8
CRITICAL
CVE-2019-3874
all versions
The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to
6.5
MEDIUM
CVE-2018-20669
all versions
An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/
7.8
HIGH
CVE-2019-1559
all versions
If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to
5.9
MEDIUM
CVE-2019-9162
all versions
In the Linux kernel before 4.20.12, net/ipv4/netfilter/nf_nat_snmp_basic_main.c in the SNMP NAT module has insufficient ASN.1 leng
7.8
HIGH
CVE-2019-9003
all versions
In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arrangin
7.5
HIGH
CVE-2018-14634
all versions
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to S
7.8
HIGH
CVE-2016-5195
all versions
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging in
7.0
HIGH
CVE-2015-8960
all versions
The TLS protocol 1.2 and earlier supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCe
8.1
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin