Vulnerabilities (CVE)

Filtered by vendor Netapp Subscribe

Filtered by product Max Data

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-15801	3 Microsoft, Netapp, Python	3 Windows, Max Data, Python	2022-06-27	7.5 HIGH	9.8 CRITICAL
In Python 3.8.4, sys.path restrictions specified in a python38._pth file are ignored, allowing code to be loaded from arbitrary locations. The <executable-name>._pth file (e.g., the python._pth file) is not affected.
CVE-2020-7699	2 Express-fileupload Project, Netapp	2 Express-fileupload, Max Data	2022-05-03	7.5 HIGH	9.8 CRITICAL
This affects the package express-fileupload before 1.1.8. If the parseNested option is enabled, sending a corrupt HTTP request can lead to denial of service or arbitrary code execution.