Ontap select deploy

This hub aggregates every CVE we track for Ontap select deploy, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Ontap select deploy.

• CVE-2024-6387Openssh: regresshion - race condition in ssh allows rce/dos8.1Jul 1, 2024
• CVE-2023-4806Glibc: potential use-after-free in getaddrinfo()5.9Sep 18, 2023
• CVE-2023-28656NGINX Management Suite vulnerability8.1May 3, 2023
• CVE-2023-0361A timing side-channel in the handling of RSA ClientKeyExchange messages was discovered in GnuTLS. This side-channel can be sufficient to recover the key encrypted in the RSA ciphertext across a net...7.4Feb 15, 2023
• CVE-2022-25844Regular Expression Denial of Service (ReDoS)5.3May 1, 2022
• CVE-2021-4160BN_mod_exp may produce incorrect results on MIPS5.9Jan 28, 2022
• CVE-2019-3856An integer overflow flaw, which could lead to an out of bounds write, was discovered in libssh2 before 1.8.1 in the way keyboard prompt requests are parsed. A remote attacker who compromises a SSH ...8.8Mar 25, 2019
• CVE-2019-3863A flaw was found in libssh2 before 1.8.1 creating a vulnerability on the SSH client side. A server could send a multiple keyboard interactive response messages whose total length are greater than u...7.5Mar 25, 2019
• CVE-2019-15590-byte record padding oracle5.9Feb 27, 2019
• CVE-2019-6109An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate t...6.8Jan 31, 2019
• CVE-2019-6110In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI...6.8Jan 31, 2019
• CVE-2018-20685In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the t...5.3Jan 10, 2019
• CVE-2018-15919Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer state...5.3Aug 28, 2018
• CVE-2018-15473OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, ...5.3Aug 17, 2018
• CVE-2016-8610A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remo...7.5Nov 13, 2017