Clustered Data ONTAP Clickjacking Vulnerability

Clustered Data ONTAP is NetApp's proprietary operating system for storage disk arrays. A clickjacking vulnerability exists in Clustered Data ONTAP versions 9.5P18, 9.6P15, 9.7P14, 9.8P5, and prior to 9.9.1. The vulnerability stems from the lack of an X-Frame-Options header in the product. An...

CVE-2021-27003

Clustered Data ONTAP versions prior to 9.5P18, 9.6P15, 9.7P14, 9.8P5 and 9.9.1 are missing an X-Frame-Options header which could allow a clickjacking attack...