Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp data ontap vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2020-8578
Clustered Data ONTAP versions before 9.3P20 are susceptible to a vulnerability which could allow an malicious user to discover node names via AutoSupport bundles even when the –remove-private-data parameter is set to true.
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.3
383
VMScore
CVE-2019-5506
Clustered Data ONTAP versions 9.0 and higher do not enforce hostname verification under certain circumstances making them susceptible to impersonation via man-in-the-middle attacks.
Netapp Clustered Data Ontap 9.6
Netapp Clustered Data Ontap
356
VMScore
CVE-2017-14583
NetApp Clustered Data ONTAP versions 9.x before 9.1P10 and 9.2P2 are susceptible to a vulnerability which allows an malicious user to cause a Denial of Service (DoS) in SMB environments.
Netapp Clustered Data Ontap 9.2
Netapp Clustered Data Ontap
668
VMScore
CVE-2015-7746
NetApp Data ONTAP prior to 8.2.4, when operating in 7-Mode, allows remote malicious users to bypass authentication and (1) obtain sensitive information from or (2) modify volumes via vectors related to UTF-8 in the volume language.
Netapp Data Ontap
383
VMScore
CVE-2015-7886
NetApp Data ONTAP prior to 8.2.4P1, when 7-Mode and HTTP access are enabled, allows remote malicious users to obtain sensitive volume information via unspecified vectors.
Netapp Data Ontap
383
VMScore
CVE-2017-12859
NetApp Data ONTAP prior to 8.2.5, when operating in 7-Mode in NFS environments, allows remote malicious users to cause a denial of service via unspecified vectors.
Netapp Data Ontap
383
VMScore
CVE-2016-6495
NetApp Data ONTAP prior to 8.2.4P5, when operating in 7-Mode, allows remote malicious users to obtain information about the volumes configured for HTTP access.
Netapp Data Ontap
668
VMScore
CVE-2019-5497
NetApp AFF A700s Baseboard Management Controller (BMC) firmware versions 1.22 and higher were shipped with a default account enabled that could allow unauthorized arbitrary command execution.
Netapp Aff A700s Firmware
Netapp Clustered Data Ontap -
447
VMScore
CVE-2018-15919
Remotely observable behaviour in auth-gss2.c in OpenSSH up to and including 7.8 could be used by remote malicious users to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to ...
Openbsd Openssh
Netapp Data Ontap Edge -
Netapp Ontap Select Deploy -
Netapp Steelstore -
Netapp Cloud Backup -
Netapp Cn1610 Firmware -
8 Github repositories
312
VMScore
CVE-2018-5498
Clustered Data ONTAP versions 9.0 up to and including 9.4 are susceptible to a vulnerability which allows remote authenticated malicious users to cause a Denial of Service (DoS) in NFS and SMB environments. Exploitation of this vulnerability will allow a remote authenticated mali...
Netapp Clustered Data Ontap
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »