754 matches found
CVE-2017-5995
The NetApp ONTAP Select Deploy administration utility 2.0 through 2.2.1 might allow remote attackers to obtain sensitive information via unspecified vectors...
CVE-2017-5995
The NetApp ONTAP Select Deploy administration utility 2.0 through 2.2.1 might allow remote attackers to obtain sensitive information via unspecified vectors...
Information disclosure
The NetApp ONTAP Select Deploy administration utility 2.0 through 2.2.1 might allow remote attackers to obtain sensitive information via unspecified vectors...
CVE-2016-5374
NetApp Data ONTAP 9.0 and 9.1 before 9.1P1 allows remote authenticated users that own SMB-hosted data to bypass intended sharing restrictions by leveraging improper handling of the ownerrights ACL entry...
CVE-2017-5995
The NetApp ONTAP Select Deploy administration utility 2.0 through 2.2.1 might allow remote attackers to obtain sensitive information via unspecified vectors...
CVE-2017-5995
The CVE-2017-5995 entry concerns NetApp ONTAP Select Deploy administration utility versions 2.0–2.2.1. It indicates a remote information disclosure vulnerability via unspecified vectors, affecting the deployment utility component. The connected documents do not provide root cause analysis, concre...
CVE-2016-5374
Affected software : NetApp Data ONTAP 9.0 and 9.1 before 9.1P1. Vulnerability : improper handling of the owner_rights ACL entry allows remote authenticated users who own SMB-hosted data to bypass sharing restrictions. Impact : bypasses intended sharing controls; confidentiality, integrity, and av...
NetApp Virtual Storage Console for VMware vSphere Man-in-the-Middle Attack Vulnerability
NetApp Virtual Storage Console VSC for VMwarev Sphere is an American NetApp product that provides end-to-end comprehensive virtual storage management capabilities for VMware infrastructures. A security vulnerability exists in NetApp VSC for VMwarev Sphere versions prior to 6.2.1. A remote attacke...
NetApp Data ONTAP Information Disclosure Vulnerability (CNVD-2017-01410)
NetApp Data ONTAP is a set of storage operating system from American NetApp. The system supports the enhancement of the user's enterprise application performance and improve the flexibility of the data center and so on. A security vulnerability exists in versions of NetApp Data ONTAP prior to...
NetApp Clustered Data ONTAP Information Disclosure Vulnerability (CNVD-2017-01406)
NetApp Clustered Data ONTAP is a set of storage operating system for clustered mode from American NetApp. The system supports users to enhance the performance of enterprise applications and improve data center flexibility and so on. A security vulnerability exists in NetApp Clustered Data ONTAP...
Code injection
NetApp OnCommand Unified Manager for Clustered Data ONTAP 6.3 through 6.4P1 contain a default privileged account, which allows remote attackers to execute arbitrary code via unspecified vectors...
CVE-2016-3063
Multiple functions in NetApp OnCommand System Manager before 8.3.2 do not properly escape special characters, which allows remote authenticated users to execute arbitrary API calls via unspecified vectors...
CVE-2016-1502
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors...
CVE-2016-1894
NetApp OnCommand Workflow Automation before 3.1P2 allows remote attackers to bypass authentication via unspecified vectors...
Authentication flaw
NetApp OnCommand Workflow Automation before 3.1P2 allows remote attackers to bypass authentication via unspecified vectors...
Code injection
NetApp Virtual Storage Console for VMware vSphere before 6.2.1 uses a non-unique certificate, which allows remote attackers to conduct man-in-the-middle attacks via unspecified vectors...
CVE-2016-1502
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors...
CVE-2016-4341
NetApp Clustered Data ONTAP before 8.3.2P7 allows remote attackers to obtain SMB share information via unspecified vectors...
Design/Logic Flaw
Multiple functions in NetApp OnCommand System Manager before 8.3.2 do not properly escape special characters, which allows remote authenticated users to execute arbitrary API calls via unspecified vectors...
CVE-2015-8544
NetApp SnapDrive for Windows before 7.0.2P4, 7.0.3, and 7.1 before 7.1.3P1 allows remote attackers to obtain sensitive information via unspecified vectors...