754 matches found
CVE-2017-12420
Heap-based buffer overflow in the SMB implementation in NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allows remote authenticated users to cause a denial of service or execute arbitrary code...
Heap overflow
Heap-based buffer overflow in the SMB implementation in NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allows remote authenticated users to cause a denial of service or execute arbitrary code...
CVE-2017-12420
NetApp Clustered Data ONTAP is affected by a heap-based buffer overflow in the SMB implementation for versions 8.x prior to 8.3.2P8 and 9.x prior to 9.0P2. The vulnerability allows a remote attacker with authentication to cause a denial of service or execute arbitrary code. ONTAP 9.1 and higher a...
CVE-2017-12420
Heap-based buffer overflow in the SMB implementation in NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allows remote authenticated users to cause a denial of service or execute arbitrary code...
CVE-2017-12859
NetApp Data ONTAP before 8.2.5, when operating in 7-Mode in NFS environments, allows remote attackers to cause a denial of service via unspecified vectors...
CVE-2017-12859
NetApp Data ONTAP before 8.2.5, when operating in 7-Mode in NFS environments, allows remote attackers to cause a denial of service via unspecified vectors...
Design/Logic Flaw
NetApp Data ONTAP before 8.2.5, when operating in 7-Mode in NFS environments, allows remote attackers to cause a denial of service via unspecified vectors...
CVE-2017-12859
NetApp Data ONTAP before 8.2.5, when operating in 7-Mode in NFS environments, allows remote attackers to cause a denial of service via unspecified vectors...
CVE-2017-12859
Affected software: NetApp Data ONTAP 8.x.x (7-Mode in NFS environments) prior to 8.2.5. Vulnerability: remote denial of service via unspecified vectors; configured in 7-Mode NFS, exploitable by a remote attacker without authentication. Impact: denial of service; information on exploitation patter...
CVE-2017-12859
NetApp Data ONTAP before 8.2.5, when operating in 7-Mode in NFS environments, allows remote attackers to cause a denial of service via unspecified vectors...
CVE-2015-7887
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups...
Design/Logic Flaw
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups...
CVE-2015-7887
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups...
CVE-2015-7887
NetApp SnapCenter Server 1.0 is affected by CVE-2015-7887. The issue is an authentication bypass that permits remote authenticated users to list and delete backups. The vulnerability is documented across multiple sources (NVD entry for CVE-2015-7887 and related CNVD/CVE records), indicating a ser...
NetApp OnCommand API Services Information Disclosure Vulnerability
NetApp OnCommand API Services is the United States NetApp set of API management tools. An information disclosure vulnerability exists in versions of NetApp OnCommand API Services prior to 1.2P3. A remote attacker could exploit this vulnerability to obtain sensitive information...
CVE-2017-8919
NetApp OnCommand API Services before 1.2P3 logs the LDAP BIND password when a user attempts to log in using the REST API, which allows remote authenticated users to obtain sensitive password information via unspecified vectors...
CVE-2017-8919
NetApp OnCommand API Services before 1.2P3 logs the LDAP BIND password when a user attempts to log in using the REST API, which allows remote authenticated users to obtain sensitive password information via unspecified vectors...
Default credentials
NetApp OnCommand API Services before 1.2P3 logs the LDAP BIND password when a user attempts to log in using the REST API, which allows remote authenticated users to obtain sensitive password information via unspecified vectors...
CVE-2017-8919
CVE-2017-8919 affects NetApp OnCommand API Services (versions before 1.2P3). The vulnerability occurs because LDAP BIND passwords are logged when a user authenticates via the REST API, allowing remote authenticated users to obtain sensitive password information via unspecified vectors. Impact is ...
CVE-2017-8919
NetApp OnCommand API Services before 1.2P3 logs the LDAP BIND password when a user attempts to log in using the REST API, which allows remote authenticated users to obtain sensitive password information via unspecified vectors...