138 matches found
CVE-2017-15519
Versions of SnapCenter 2.0 through 3.0.1 allow unauthenticated remote attackers to view and modify backup related data via the Plug-in for NAS File Services. All users are urged to move to version 3.0.1 and perform the mitigation steps or upgrade to 4.0 following the product documentation...
NetApp SnapCenter Server Cross-Site Request Forgery Vulnerability
NetApp SnapCenter is a suite of applications from NetApp, Inc. that provide the ability to back up, validate, clone, and restore NetApp storage systems.NetApp SnapCenter Server is a server version... A cross-site request forgery vulnerability exists in NetApp SnapCenter Server versions 1.1 throug...
CVE-2017-15516
NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery CSRF vulnerability which could be used to cause an unintended authenticated action in the user interface...
CVE-2017-15516
NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery CSRF vulnerability which could be used to cause an unintended authenticated action in the user interface...
Cross site request forgery (csrf)
NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery CSRF vulnerability which could be used to cause an unintended authenticated action in the user interface...
CVE-2017-15516
NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery CSRF vulnerability which could be used to cause an unintended authenticated action in the user interface...
CVE-2017-15516
NetApp SnapCenter Server versions 1.1–2.x are vulnerable to Cross-Site Request Forgery (CSRF) that can cause unintended authenticated actions in the UI. The issue is caused by CSRF in the server’s web interface, enabling an attacker to exploit a user’s authenticated session to perform actions wit...
Design/Logic Flaw
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups...
CVE-2015-7887
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups...
CVE-2015-7887
NetApp SnapCenter Server 1.0 is affected by CVE-2015-7887. The issue is an authentication bypass that permits remote authenticated users to list and delete backups. The vulnerability is documented across multiple sources (NVD entry for CVE-2015-7887 and related CNVD/CVE records), indicating a ser...
CVE-2015-7887
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups...
CVE-2016-1502
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors...
CVE-2016-1502
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors...
Authentication flaw
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors...
CVE-2016-1502
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors...
CVE-2016-1502
CVE-2016-1502 affects NetApp SnapCenter Server versions 1.0 and 1.0P1, where an attacker can remotely bypass authentication and subsequently list and delete backups via unspecified vectors. The NVD entry rates this as HIGH (CVSSv3 base 7.3) with network attack vector, no privileges required, and ...
NetApp SnapCenter Server Authentication Bypass Vulnerability
NetApp SnapCenter is a suite of applications that provide the ability to back up, verify, clone, and restore NetApp storage systems.NetApp SnapCenter Server is a server edition. A security vulnerability exists in NetApp SnapCenter Server that allows an attacker to bypass the authentication...
NetApp SnapCenter Server Authentication Bypass Vulnerability
NetApp SnapCenter is a suite of applications that provide the ability to back up, verify, clone, and restore NetApp storage systems.NetApp SnapCenter Server is a server edition. An authentication bypass vulnerability exists in NetApp SnapCenter Server, which could be exploited by remote attackers...