Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Data_ontap
(Netapp)| Repositories | https://github.com/openbsd/src |
| #Vulnerabilities | 42 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2017-02-07 | CVE-2016-6495 | NetApp Data ONTAP before 8.2.4P5, when operating in 7-Mode, allows remote attackers to obtain information about the volumes configured for HTTP access. | Data_ontap | 5.9 | ||
| 2017-03-01 | CVE-2016-5374 | NetApp Data ONTAP 9.0 and 9.1 before 9.1P1 allows remote authenticated users that own SMB-hosted data to bypass intended sharing restrictions by leveraging improper handling of the owner_rights ACL entry. | Data_ontap | 8.8 | ||
| 2017-07-03 | CVE-2016-3400 | NetApp Data ONTAP 8.1 and 8.2, when operating in 7-Mode, allows man-in-the-middle attackers to obtain sensitive information, gain privileges, or cause a denial of service via vectors related to the SMB protocol. | Data_ontap | 7.5 | ||
| 2017-09-01 | CVE-2016-1895 | NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to cause a denial of service via vectors related to unsafe user input string handling. | Data_ontap | 6.5 | ||
| 2017-02-07 | CVE-2015-8322 | NetApp OnCommand System Manager 8.3.x before 8.3.2 allows remote authenticated users to execute arbitrary code via unspecified vectors. | Data_ontap | 8.8 | ||
| 2016-01-18 | CVE-2015-7886 | NetApp Data ONTAP before 8.2.4P1, when 7-Mode and HTTP access are enabled, allows remote attackers to obtain sensitive volume information via unspecified vectors. | Data_ontap | 3.7 | ||
| 2017-09-01 | CVE-2015-7746 | NetApp Data ONTAP before 8.2.4, when operating in 7-Mode, allows remote attackers to bypass authentication and (1) obtain sensitive information from or (2) modify volumes via vectors related to UTF-8 in the volume language. | Data_ontap | 9.8 | ||
| 2008-07-28 | CVE-2008-3349 | Multiple unspecified vulnerabilities in NetApp Data ONTAP, as used on NetApp and IBM eServer platforms, allow remote attackers to execute arbitrary commands, cause a denial of service (system crash), or obtain sensitive information, probably related to insufficient access control for HTTP requests. NOTE: this may overlap CVE-2008-3160. | Data_ontap | N/A |