CVE-2016-1895

NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to cause a denial of service via vectors related to unsafe user input string handling...

CVE-2016-1895

NetApp Data ONTAP (clusters running before 8.2.5 or 8.3.x before 8.3.2P12) is affected by CVE-2016-1895. An authenticated remote attacker can cause a denial of service through unsafe handling of certain user input strings in the OS. The vulnerability’s root cause is related to input string proces...

CVE-2017-12423

NetApp Clustered Data ONTAP 8.3.x before 8.3.2P12 allows remote authenticated users to read data on other Storage Virtual Machines SVMs via unspecified vectors...

CVE-2017-12421

NetApp Clustered Data ONTAP 8.3.x before 8.3.2P12 is affected by CVE-2017-12421. A remote authenticated attacker can execute arbitrary code on the storage controller via unspecified vectors. Impact is described as remote code execution with potential data exposure on affected ONTAP versions. Reme...

CVE-2017-12423

NetApp Clustered Data ONTAP 8.x before 8.3.2P12 is affected by an information-disclosure issue in Storage Virtual Machines (SVMs). Remote authenticated users can read data from other SVMs via unspecified vectors. Impact and root cause are described as unspecified flaws in SVMs. The Nessus entry n...

CVE-2015-7746

NetApp Data ONTAP before 8.2.4, when operating in 7-Mode, allows remote attackers to bypass authentication and 1 obtain sensitive information from or 2 modify volumes via vectors related to UTF-8 in the volume language...

Authentication flaw

NetApp Data ONTAP before 8.2.4, when operating in 7-Mode, allows remote attackers to bypass authentication and 1 obtain sensitive information from or 2 modify volumes via vectors related to UTF-8 in the volume language...

CVE-2015-7746

NetApp Data ONTAP before 8.2.4, when operating in 7-Mode, allows remote attackers to bypass authentication and 1 obtain sensitive information from or 2 modify volumes via vectors related to UTF-8 in the volume language...

CVE-2015-7746

NetApp Data ONTAP operating in 7-Mode is affected in versions before 8.2.4. A remote attacker can bypass authentication and either obtain sensitive information from volumes or modify volumes via vectors related to UTF-8 in the volume language. This vulnerability is documented across multiple sour...

NetApp StorageGRID Webscale Arbitrary Object Deletion Vulnerability

NetApp StorageGRID Webscale is a suite of scalable object storage software from American NetApp. A security vulnerability exists in NetApp StorageGRID Webscale, which allows remote attackers to exploit the vulnerability to commit special deletion of arbitrary objects...

NetApp StorageGRID Detection (HTTP)

HTTP based detection of NetApp StorageGRID formerly StorageGRID Webscale. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fr...

Code injection

NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors...

CVE-2017-12422

NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors...

CVE-2017-12422

NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors...

CVE-2017-12422

NetApp StorageGRID Webscale is affected. Versions 10.2.x prior to 10.2.2.3, 10.3.x prior to 10.3.0.4, and 10.4.x prior to 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors. The primary impact is unauthorized deletion of objects; the underlying root caus...

NetApp ONTAP Device Detection

Binary data netappontapdetect.nbin...

NetApp ONTAP 8.x.x < 8.2.5 (NTAP-20170815-0002)

The version of NetApp ONTAP running on the remote host is 8.x.x prior to 8.2.5. It is, therefore, affected by a denial-of-service vulnerability. A remote unauthenticated attacker could leverage this vulnerability and cause a denial-of-service condition against affected systems running 7-Mode in N...

NetApp Clustered Data ONTAP Heap Buffer Overflow Vulnerability

NetApp Clustered Data ONTAP is a set of storage operating system for clustered mode from the American company NetApp. A heap buffer overflow vulnerability exists in the NetApp Clustered Data ONTAP SMB implementation, which allows remote attackers to exploit the vulnerability by submitting a speci...

NetApp Data ONTAP Denial of Service Vulnerability (CNVD-2017-30013)

NetApp Data ONTAP is a set of storage operating system from American NetApp. The system supports the enhancement of the user's enterprise application performance and improve the flexibility of the data center and so on. A security vulnerability exists in NetApp Data ONTAP versions prior to 8.2.5....

CVE-2017-12420

Heap-based buffer overflow in the SMB implementation in NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allows remote authenticated users to cause a denial of service or execute arbitrary code...