CVE-2017-15516

NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery CSRF vulnerability which could be used to cause an unintended authenticated action in the user interface...

PT-2018-5762 · Netapp +7 · Netapp Oncommand Shift +26

Name of the Vulnerable Software and Affected Versions: jackson-databind versions prior to 2.8.11 and 2.9.4 debian linux affected versions not specified fasterxml jackson-databind affected versions not specified netapp oncommand balance affected versions not specified netapp oncommand performance...

CVE-2017-5201

NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allow remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors, a different vulnerability than CVE-2016-3064...

CVE-2017-5201

NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allow remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors, a different vulnerability than CVE-2016-3064...

CVE-2017-11461

NetApp OnCommand Unified Manager for 7-mode core package versions prior to 5.2.1 are susceptible to a clickjacking or "UI redress attack" which could be used to cause a user to perform an unintended action in the user interface...

CVE-2017-11461

NetApp OnCommand Unified Manager for 7-mode core package versions prior to 5.2.1 are susceptible to a clickjacking or "UI redress attack" which could be used to cause a user to perform an unintended action in the user interface...

Design/Logic Flaw

NetApp OnCommand Unified Manager for 7-mode core package versions prior to 5.2.1 are susceptible to a clickjacking or "UI redress attack" which could be used to cause a user to perform an unintended action in the user interface...

Code injection

NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allow remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors, a different vulnerability than CVE-2016-3064...

NetApp Clustered Data ONTAP Information Disclosure Vulnerability (CNVD-2017-36367)

NetApp Clustered Data ONTAP is a set of storage operating system for clustered mode from American NetApp. The system supports users to enhance the performance of enterprise applications and improve data center flexibility and so on. A security vulnerability exists in NetApp Clustered Data ONTAP...

CVE-2017-11461

NetApp OnCommand Unified Manager for 7-mode core package versions prior to 5.2.1 are susceptible to a clickjacking or "UI redress attack" which could be used to cause a user to perform an unintended action in the user interface...

CVE-2017-11461

CVE-2017-11461 concerns NetApp OnCommand Unified Manager for 7-mode (core package) prior to version 5.2.1. The issue is a UI redress/clickjacking vulnerability that could cause a user to perform an unintended action within the web interface. The affected software is the OnCommand Unified Manager ...

CVE-2017-5201

NetApp Clustered Data ONTAP exposes an information-disclosure vulnerability (CVE-2017-5201) affecting versions prior to 8.3.2P8 and 9.0 prior to P2. The issue allows remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors. Root cause and exact exploit...

CVE-2017-5201

NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allow remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors, a different vulnerability than CVE-2016-3064...

NetApp Clustered Data ONTAP < 8.2.5 / 8.3.x < 8.3.2P12 (NTAP-20170831-0003)

The version of NetApp Clustered Data ONTAP running on the remote host is prior to 8.2.5 or 8.3.x prior to 8.3.2P12. It is, therefore, affected by an unspecified flaw in the handling of certain user input strings which allow an authenticated user to cause a Denial of Service DoS condition. Note th...

NetApp Clustered Data ONTAP 8.x < 8.3.2P12 (NTAP-20170831-0002)

The version of NetApp Clustered Data ONTAP running on the remote host is 8.3.x prior to 8.3.2P12. It is, therefore, affected by unspecified flaws in Storage Virtual Machines SVMs that allow an authenticated remote attacker to gain access to potentially sensitive information and execute arbitrary...

NetApp Clustered Data ONTAP 8.x < 8.3.2P8 / 9.x < 9.0P2 (NTAP-20170814-0001)

The version of NetApp Clustered Data ONTAP running on the remote host is 8.x prior to 8.3.2P8 or 9.x prior to 9.0P2. It is, therefore, affected by a heap overflow vulnerability in the SMB implementation that allows a remote unauthenticated attacker to cause a denial of service disruption or execu...

NetApp Data ONTAP Detection (HTTP)

HTTP based detection of NetApp Data ONTAP. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.140348...

NetApp OnCommand Unified Manager Detection

Detection of NetApp OnCommand Unified Manager. The script sends a connection request to the server and attempts to detect NetApp OnCommand Unified Manager. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

NetApp Data ONTAP Detection (SNMP)

SNMP based detection of NetApp Data ONTAP. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.140349...

NetApp Data ONTAP Detection (NTP)

NTP based detection of NetApp Data ONTAP. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.140347"...