CVE-2016-1895

CWE-134Uncontrolled Format String3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.5%
top 33.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netapp Data Ontap
Timeline
PublishedSep 1
Latest updateMay 17

Description

NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to cause a denial of service via vectors related to unsafe user input string handling.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages1 packages

NVDnetapp/data_ontap8.2.4+2

🔴Vulnerability Details

2
GHSA
GHSA-488x-jpc9-9c55: NetApp Data ONTAP before 82022-05-17
CVEList
CVE-2016-1895: NetApp Data ONTAP before 82017-09-01
CVE-2016-1895 (MEDIUM CVSS 6.5) | NetApp Data ONTAP before 8.2.5 and | cvebase.io