37 matches found
EUVD-2018-17250
Malware in sbrugna...
EUVD-2018-17258
Malware in sbrugna...
EUVD-2016-7417
Malware in sbrugna...
EUVD-2019-15077
Malware in sbrugna...
CVE-2021-26988
Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P8 and 9.8 are susceptible to a vulnerability which could allow unauthorized tenant users to discover information related to converting a 7-Mode directory to Cluster-mode such as Storage Virtual Machine SVM names, volume names,...
Code injection
Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P8 and 9.8 are susceptible to a vulnerability which could allow unauthorized tenant users to discover information related to converting a 7-Mode directory to Cluster-mode such as Storage Virtual Machine SVM names, volume names,...
NetApp Data ONTAP (7-Mode) < 8.2.5P3 Multiple Vulnerabilities (ntap-20190801-0001)(ntap-20190801-0002)(ntap-20190802-0002)
The version of NetApp Data ONTAP running on the remote host is prior to 8.2.5P3. It is, therefore, affected by multiple vulnerabilities: - An information disclosure vulnerability exists in NetApp Data ONTAP. An unauthenticated, remote attacker can exploit this to disclose potentially sensitive...
CVE-2019-5501
Data ONTAP operating in 7-Mode versions prior to 8.2.5P3 may disclose sensitive LDAP account information to unauthenticated remote attackers...
CVE-2019-5493
Data ONTAP operating in 7-Mode versions prior to 8.2.5P3 are susceptible to a vulnerability which discloses information to an unauthenticated attacker. A successful attack requires that multiple non-default options be enabled...
Code injection
Data ONTAP operating in 7-Mode versions prior to 8.2.5P3 may disclose sensitive LDAP account information to unauthenticated remote attackers...
Design/Logic Flaw
Data ONTAP operating in 7-Mode versions prior to 8.2.5P3 are susceptible to a vulnerability which discloses information to an unauthenticated attacker. A successful attack requires that multiple non-default options be enabled...
CVE-2019-5501
NetApp Data ONTAP (7-Mode) versions prior to 8.2.5P3 are affected by CVE-2019-5501, an information-disclosure vulnerability that can reveal sensitive LDAP account information to unauthenticated remote attackers. Details in the NVD entry and Nessus plugin confirm the affected product version range...
CVE-2019-5493
NetApp Data ONTAP (7-Mode) older than 8.2.5P3 is affected by an information-disclosure vulnerability (CVE-2019-5493) that requires multiple non-default options to be enabled and is exploitable by an unauthenticated remote attacker. The Nessus plugin ntap-20190801-0001 lists this CVE along with CV...
CVE-2019-5494
OnCommand Unified Manager 7-Mode prior to version 5.2.4 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors...
CVE-2018-5481
CVE-2018-5481 affects OnCommand Unified Manager for 7-Mode (core package) prior to version 5.2.4, where cookies are set without the secure attribute in certain circumstances. This can enable impersonation via MITM attacks on network-accessible sessions. The vulnerability arises from cookie securi...
CVE-2018-5481
OnCommand Unified Manager for 7-Mode core package prior to 5.2.4 uses cookies that lack the secure attribute in certain circumstances making it vulnerable to impersonation via man-in-the-middle MITM attacks...
Design/Logic Flaw
OnCommand Unified Manager for 7-Mode core package prior to 5.2.4 uses cookies that lack the secure attribute in certain circumstances making it vulnerable to impersonation via man-in-the-middle MITM attacks...
Design/Logic Flaw
Data ONTAP operating in 7-Mode versions prior to 8.2.5P2 are susceptible to a vulnerability which discloses sensitive information to an unauthorized user...
CVE-2018-5496
Data ONTAP operating in 7-Mode versions prior to 8.2.5P2 are susceptible to a vulnerability which discloses sensitive information to an unauthorized user...
CVE-2018-5496
Data ONTAP operating in 7-Mode versions prior to 8.2.5P2 are susceptible to a vulnerability which discloses sensitive information to an unauthorized user...