Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp data ontap - vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv3
CVE-2020-8578
Clustered Data ONTAP versions before 9.3P20 are susceptible to a vulnerability which could allow an malicious user to discover node names via AutoSupport bundles even when the –remove-private-data parameter is set to true.
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.3
5.9
CVSSv3
CVE-2019-5506
Clustered Data ONTAP versions 9.0 and higher do not enforce hostname verification under certain circumstances making them susceptible to impersonation via man-in-the-middle attacks.
Netapp Clustered Data Ontap 9.6
Netapp Clustered Data Ontap
6.5
CVSSv3
CVE-2017-14583
NetApp Clustered Data ONTAP versions 9.x before 9.1P10 and 9.2P2 are susceptible to a vulnerability which allows an malicious user to cause a Denial of Service (DoS) in SMB environments.
Netapp Clustered Data Ontap 9.2
Netapp Clustered Data Ontap
9.8
CVSSv3
CVE-2015-7746
NetApp Data ONTAP prior to 8.2.4, when operating in 7-Mode, allows remote malicious users to bypass authentication and (1) obtain sensitive information from or (2) modify volumes via vectors related to UTF-8 in the volume language.
Netapp Data Ontap
3.7
CVSSv3
CVE-2015-7886
NetApp Data ONTAP prior to 8.2.4P1, when 7-Mode and HTTP access are enabled, allows remote malicious users to obtain sensitive volume information via unspecified vectors.
Netapp Data Ontap
5.9
CVSSv3
CVE-2017-12859
NetApp Data ONTAP prior to 8.2.5, when operating in 7-Mode in NFS environments, allows remote malicious users to cause a denial of service via unspecified vectors.
Netapp Data Ontap
5.9
CVSSv3
CVE-2016-6495
NetApp Data ONTAP prior to 8.2.4P5, when operating in 7-Mode, allows remote malicious users to obtain information about the volumes configured for HTTP access.
Netapp Data Ontap
9.8
CVSSv3
CVE-2019-5497
NetApp AFF A700s Baseboard Management Controller (BMC) firmware versions 1.22 and higher were shipped with a default account enabled that could allow unauthorized arbitrary command execution.
Netapp Aff A700s Firmware
Netapp Clustered Data Ontap -
5.3
CVSSv3
CVE-2018-15919
Remotely observable behaviour in auth-gss2.c in OpenSSH up to and including 7.8 could be used by remote malicious users to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to ...
Openbsd Openssh
Netapp Data Ontap Edge -
Netapp Ontap Select Deploy -
Netapp Steelstore -
Netapp Cloud Backup -
Netapp Cn1610 Firmware -
8 Github repositories
4.4
CVSSv3
CVE-2018-5498
Clustered Data ONTAP versions 9.0 up to and including 9.4 are susceptible to a vulnerability which allows remote authenticated malicious users to cause a Denial of Service (DoS) in NFS and SMB environments. Exploitation of this vulnerability will allow a remote authenticated mali...
Netapp Clustered Data Ontap
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »