30 matches found
EUVD-2016-6000
Malware in sbrugna...
EUVD-2016-5998
Malware in sbrugna...
EUVD-2015-8206
Malware in sbrugna...
EUVD-2016-4136
Malware in sbrugna...
EUVD-2020-29435
Malware in sbrugna...
EUVD-2019-7689
Malware in sbrugna...
CVE-2020-8587
OnCommand System Manager 9.x versions prior to 9.3P20 and 9.4 prior to 9.4P3 are susceptible to a vulnerability that could allow HTTP clients to cache sensitive responses making them accessible to an attacker who has access to the system where the client runs...
CVE-2019-17276
OnCommand System Manager versions 9.3 prior to 9.3P18 and 9.4 prior to 9.4P2 are susceptible to a cross site scripting vulnerability that could allow an authenticated attacker to inject arbitrary scripts into the SNMP Community Names label field...
CVE-2020-8587
OnCommand System Manager 9.x versions prior to 9.3P20 and 9.4 prior to 9.4P3 are susceptible to a vulnerability that could allow HTTP clients to cache sensitive responses making them accessible to an attacker who has access to the system where the client runs...
CVE-2020-8587
OnCommand System Manager 9.x versions prior to 9.3P20 and 9.4 prior to 9.4P3 are susceptible to a vulnerability that could allow HTTP clients to cache sensitive responses making them accessible to an attacker who has access to the system where the client runs...
Code injection
OnCommand System Manager 9.x versions prior to 9.3P20 and 9.4 prior to 9.4P3 are susceptible to a vulnerability that could allow HTTP clients to cache sensitive responses making them accessible to an attacker who has access to the system where the client runs...
CVE-2020-8587
The CVE covers NetApp OnCommand System Manager 9.x before 9.3P20 and 9.4 before 9.4P3, where HTTP responses can be cached by clients, potentially exposing sensitive data to an attacker with access to the client system. The connected documents confirm affected versions and the caching vulnerabilit...
NetApp OnCommand System Manager Cross-Site Scripting Vulnerability
NetApp OnCommand System Manager is a suite of storage management tools from NetApp, USA. The tool supports simplifying, controlling, and automating the setup and ongoing management of NetApp storage systems. A cross-site scripting vulnerability in NetApp OnCommand System Manager version 9.3 prior...
CVE-2019-17276
OnCommand System Manager versions 9.3 prior to 9.3P18 and 9.4 prior to 9.4P2 are susceptible to a cross site scripting vulnerability that could allow an authenticated attacker to inject arbitrary scripts into the SNMP Community Names label field...
CVE-2019-17276
OnCommand System Manager versions 9.3 prior to 9.3P18 and 9.4 prior to 9.4P2 are susceptible to a cross site scripting vulnerability that could allow an authenticated attacker to inject arbitrary scripts into the SNMP Community Names label field...
Cross site scripting
OnCommand System Manager versions 9.3 prior to 9.3P18 and 9.4 prior to 9.4P2 are susceptible to a cross site scripting vulnerability that could allow an authenticated attacker to inject arbitrary scripts into the SNMP Community Names label field...
CVE-2019-17276
The CVE describes a cross-site scripting vulnerability in NetApp OnCommand System Manager, affecting versions 9.3 prior to 9.3P18 and 9.4 prior to 9.4P2. The root cause is stated as a lack of proper validation of client-side data by the WEB application, enabling an authenticated attacker to injec...
CVE-2013-3321
NetApp OnCommand System Manager 2.1 and earlier allows remote attackers to include arbitrary files through specially crafted requests to the "diagnostic" page using the SnapMirror log path parameter...
CVE-2013-3320
NetApp OnCommand System Manager prior to 2.2 is affected by CVE-2013-3320 (XSS) via the full-name and comment fields. The SEC Consult advisory indicates vulnerable versions are <= 2.1 and
CVE-2016-5045
NetApp OnCommand System Manager before 9.0 allows remote attackers to obtain sensitive credentials via vectors related to cluster peering setup...