Code injection

NetApp OnCommand System Manager 8.3.x before 8.3.2P5 allows remote authenticated users to cause a denial of service via unspecified vectors...

CVE-2016-5047

NetApp OnCommand System Manager 8.3.x before 8.3.2P5 allows remote authenticated users to cause a denial of service via unspecified vectors...

CVE-2016-5047

NetApp OnCommand System Manager 8.3.x before 8.3.2P5 is affected by CVE-2016-5047, allowing remote authenticated users to cause a denial of service via unspecified vectors. The issue is described in public sources as a DoS vulnerability affecting the system management suite prior to the 8.3.2P5 p...

CVE-2016-3064

NetApp Clustered Data ONTAP before 8.2.4P4 and 8.3.x before 8.3.2P2 allows remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors...

CVE-2016-3064

NetApp Clustered Data ONTAP before 8.2.4P4 and 8.3.x before 8.3.2P2 allows remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors...

Code injection

NetApp Clustered Data ONTAP before 8.2.4P4 and 8.3.x before 8.3.2P2 allows remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors...

CVE-2016-3064

NetApp Clustered Data ONTAP before 8.2.4P4 and 8.3.x before 8.3.2P2 contain an information-disclosure vulnerability. Remote authenticated users can obtain sensitive cluster and tenant information via unspecified vectors. Affected versions and the upgrade path to fixed builds are indicated in the ...

CVE-2016-3064

NetApp Clustered Data ONTAP before 8.2.4P4 and 8.3.x before 8.3.2P2 allows remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors...

NetApp OnCommand System Manager Denial of Service Vulnerability

NetApp OnCommand System Manager is a suite of storage management tools from NetApp, USA. The tool supports simplifying, controlling, and automating the setup and ongoing management of NetApp storage systems. A denial of service vulnerability exists in versions of NetApp OnCommand System Manager...

NetApp Clustered Data ONTAP Information Disclosure Vulnerability

NetApp Clustered Data ONTAP is a set of storage operating system for clustered mode from the American company NetApp. An information disclosure vulnerability exists in Data ONTAP versions prior to 8.2.4P4 and 8.3.x versions prior to 8.3.2P2, which allows an attacker to exploit the vulnerability t...

NetApp MetroCluster Tiebreaker for clustered Data ONTAP Information Disclosure Vulnerability

NetApp Clustered Data ONTAP is a set of storage operating system for clustered mode from the American company NetApp. An information disclosure vulnerability exists in NetApp MetroCluster Tiebreaker for clustered Data ONTAP, which allows remote attackers to submit a special request to obtain...

NetApp Clustered Data ONTAP Information Disclosure Vulnerability

NetApp Clustered Data ONTAP is a set of storage operating system for clustered mode from American NetApp. The system supports users to enhance the performance of enterprise applications and improve data center flexibility and so on. An information disclosure vulnerability exists in NetApp Cluster...

NetApp OnTap OS Default Credentials

The remote device is a NetApp OnTAP OS device that uses a set of known, default credentials. An attacker who is able to connect to the service can use these credentials to gain control of the device. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...

NetApp OnCommand System Manager Arbitrary Code Execution Vulnerability

NetApp OnCommand System Manager is a suite of storage management tools from the American company NetApp. An arbitrary code execution vulnerability exists in NetApp OnCommand System Manager, which can be exploited by an attacker to execute arbitrary code, potentially resulting in a denial of servi...

NetApp OnCommand Workflow Automation Authentication Bypass Vulnerability

NetApp OnCommand Workflow Automation is a set of storage process management software from the U.S. company NetApp. An authentication bypass vulnerability exists in versions of NetApp OnCommand Workflow Automation prior to 3.1P2, which can be exploited by an attacker to bypass the authorization...

NetApp OnCommand System Manager Local Command Injection Vulnerability

NetApp OnCommand System Manager is a suite of storage management tools from the American company NetApp. A local command injection vulnerability exists in NetApp OnCommand System Manager version 8.3.x, which can be exploited by an attacker to inject arbitrary commands into the application...

netapp.iteraction.ee XSS vulnerability

Vulnerable URL: http://netapp.iteraction.ee/wp-includes/js/mediaelement/flashmediaelement.swf?jsinitfunctio%gn=alertOPENBUGBOUNTY Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP websi...

Backup jobs stop working with NetApp SteelStore Cloud Integrated storage after upgrading to Veeam version 9

Challenge Aafter upgrading Veeam Backup & Replication to version 9, backup jobs to a NetApp repository based on a SteelStore host platform fail. The following error message can be seen in the job logs: " Error File not found. File name: \\PathToShare\BackupFolder\JobName.vbm" The NetApp log...

NetApp Clustered Data ONTAP Man-in-the-Middle Attack Vulnerability

NetApp Data ONTAP is the data management platform. A security vulnerability exists in NetApp Clustered Data ONTAP 8.3.1 due to failure to properly validate the x.509 certificate of the TLS server. A man-in-the-middle attacker could exploit this vulnerability via a constructed certificate to spoof...

CVE-2016-1563

NetApp Clustered Data ONTAP 8.3.1 does not properly verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...