Information disclosure

2016-04-0710:59:00

PRIOn knowledge base

www.prio-n.com

6.4 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

29.4%

JSON

NetApp Clustered Data ONTAP 8.3.1 does not properly verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CPENameOperatorVersion
clustered_data_ontapeq8.3.1

CPE	Name	Operator	Version
	clustered_data_ontap	eq	8.3.1

References

kb.netapp.com/support/index?page=content&id=9010064

security.netapp.com/advisory/ntap-20160310-0002/