Ontap tools

This hub aggregates every CVE we track for Ontap tools, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Ontap tools.

• CVE-2025-27820Apache HttpComponents: PSL (Public Suffix List) validation bypass7.5Apr 24, 2025
• CVE-2025-0167netrc and default credential leak3.4Feb 5, 2025
• CVE-2024-52533gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.9.8Nov 11, 2024
• CVE-2024-38286Apache Tomcat: Denial of Service8.6Nov 7, 2024
• CVE-2024-49761REXML ReDoS vulnerability7.5Oct 28, 2024
• CVE-2024-47554Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader4.3Oct 3, 2024
• CVE-2024-7254Stack overflow in Protocol Buffers Java Lite7.5Sep 19, 2024
• CVE-2024-8096OCSP stapling bypass with GnuTLS6.5Sep 11, 2024
• CVE-2024-6119Possible denial of service in X.509 name checks7.5Sep 3, 2024
• CVE-2024-39689Certifi removes GLOBALTRUST root certificate7.5Jul 5, 2024
• CVE-2024-39884Apache HTTP Server: source code disclosure with handlers configured via AddType6.2Jul 4, 2024
• CVE-2024-34750Apache Tomcat: HTTP/2 excess header handling DoS7.5Jul 3, 2024
• CVE-2024-6387Openssh: regresshion - race condition in ssh allows rce/dos8.1Jul 1, 2024
• CVE-2024-34397An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus-based client subscribes to signals from a trusted system service such as NetworkManager on a s...5.2May 7, 2024
• CVE-2024-24795Apache HTTP Server: HTTP Response Splitting in multiple modules6.3Apr 4, 2024