Netapp Oncommand Unified Manager For 7-Mode vulnerabilities
2 known vulnerabilities affecting netapp/oncommand_unified_manager_for_7-mode.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-5481HIGHCVSS 7.4vVersions prior to 5.2.42019-01-07
CVE-2018-5481 [HIGH] CWE-311 CVE-2018-5481: OnCommand Unified Manager for 7-Mode (core package) prior to 5.2.4 uses cookies that lack the secure
OnCommand Unified Manager for 7-Mode (core package) prior to 5.2.4 uses cookies that lack the secure attribute in certain circumstances making it vulnerable to impersonation via man-in-the-middle (MITM) attacks.
cvelistv5nvd
CVE-2017-7568MEDIUMCVSS 5.3vVersions below 5.2.32018-06-22
CVE-2017-7568 [MEDIUM] CWE-200 CVE-2017-7568: NetApp OnCommand Unified Manager for 7-Mode (core package) versions prior to 5.2.3 may disclose sens
NetApp OnCommand Unified Manager for 7-Mode (core package) versions prior to 5.2.3 may disclose sensitive LDAP account information to authenticated users when the LDAP authentication configuration is tested via the user interface.
cvelistv5nvd