CVE-2019-5496
published 2019-05-10CVE-2019-5496: Oncommand Insight versions prior to 7.3.5 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive…
high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
Oncommand Insight versions prior to 7.3.5 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netapp | oncommand_insight | < 7.3.5 | 7.3.5 |
| netapp | oncommand_insight | — | — |