3 matches found
CVE-2019-17276
OnCommand System Manager versions 9.3 prior to 9.3P18 and 9.4 prior to 9.4P2 are susceptible to a cross site scripting vulnerability that could allow an authenticated attacker to inject arbitrary scripts into the SNMP Community Names label field...
CVE-2019-17276
OnCommand System Manager versions 9.3 prior to 9.3P18 and 9.4 prior to 9.4P2 are susceptible to a cross site scripting vulnerability that could allow an authenticated attacker to inject arbitrary scripts into the SNMP Community Names label field...
CVE-2019-17276
The CVE describes a cross-site scripting vulnerability in NetApp OnCommand System Manager, affecting versions 9.3 prior to 9.3P18 and 9.4 prior to 9.4P2. The root cause is stated as a lack of proper validation of client-side data by the WEB application, enabling an authenticated attacker to injec...