The installer in NetApp OnCommand Workflow Automation prior to 2.2.1P1 and 3.x prior to 3.0P1 sets up the Java Debugging Wire Protocol (JDWP) service, which allows remote malicious users to execute arbitrary code via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netapp oncommand workflow automation |
||
netapp oncommand workflow automation 3.0 |