Netapp Oncommand Unified Manager For Clustered Data Ontap vulnerabilities
2 known vulnerabilities affecting netapp/oncommand_unified_manager_for_clustered_data_ontap.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2016-6667P2CRITICALCVSS 9.8v6.3v6.42017-02-07
CVE-2016-6667 [CRITICAL] CVE-2016-6667: NetApp OnCommand Unified Manager for Clustered Data ONTAP 6.3 through 6.4P1 contain a default privil
NetApp OnCommand Unified Manager for Clustered Data ONTAP 6.3 through 6.4P1 contain a default privileged account, which allows remote attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2017-14053P3HIGHCVSS 7.5≤ 7.22017-09-01
CVE-2017-14053 [HIGH] CWE-200 CVE-2017-14053: NetApp OnCommand Unified Manager for Clustered Data ONTAP before 7.2P1 does not set the secure flag
NetApp OnCommand Unified Manager for Clustered Data ONTAP before 7.2P1 does not set the secure flag for an unspecified cookie in an HTTPS session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an HTTP session.
nvd