Vulnerabilities (CVE)

Vendor filter

Netapp Subscribe

Product filter

Oncommand Insight Subscribe

Filter

68 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-3066 4 Oracle, Netapp, Canonical and 1 more 7 Mysql, Oncommand Insight, Oncommand Workflow Automation and 4 more 2019-10-03 4.9
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Options). Supported versions that are affected are 5.5.60 and prior, 5.6.40 and prior and 5.7.22 and prior. Difficult to exploit vulnerability allows high...
CVE-2018-3200 3 Oracle, Netapp, Canonical 6 Mysql, Oncommand Insight, Oncommand Workflow Automation and 3 more 2019-10-03 4.0
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 5.7.23 and prior and 8.0.12 and prior. Easily exploitable vulnerability allows high privileged attacker with network...
CVE-2017-1784 2 Ibm, Netapp 2 Cognos Analytics, Oncommand Insight 2019-09-30 2.1
IBM Cognos Analytics 11.0 could produce results in temporary files that contain highly sensitive information that can be read by a local user. IBM X-Force ID: 136858.
CVE-2019-5498 1 Netapp 1 Oncommand Insight 2019-08-14 4.0
OnCommand Insight versions through 7.3.6 may disclose sensitive account information to an authenticated user.
CVE-2017-5645 4 Apache, Netapp, Oracle and 1 more 59 Log4j, Oncommand Api Services, Oncommand Insight and 56 more 2019-06-19 7.5
In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code.
CVE-2018-2813 5 Oracle, Canonical, Debian and 2 more 14 Mysql, Ubuntu Linux, Debian Linux and 11 more 2019-05-21 4.0
Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: DDL). Supported versions that are affected are 5.5.59 and prior, 5.6.39 and prior and 5.7.21 and prior. Easily exploitable vulnerability allows low privileged...
CVE-2018-1413 2 Ibm, Netapp 2 Cognos Analytics, Oncommand Insight 2019-04-27 3.5
IBM Cognos Analytics 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a...
CVE-2017-13652 1 Netapp 1 Oncommand Insight 2018-10-05 4.3
NetApp OnCommand Insight version 7.3.0 and versions prior to 7.2.0 are susceptible to clickjacking attacks which could cause a user to perform an unintended action in the user interface.