Netapp Oncommand Unified Manager For Linux vulnerabilities
2 known vulnerabilities affecting netapp/oncommand_unified_manager_for_linux.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2018-5487CRITICALCVSS 9.8vVersions 7.2 through 7.32018-05-24
CVE-2018-5487 [CRITICAL] CWE-20 CVE-2018-5487: NetApp OnCommand Unified Manager for Linux versions 7.2 through 7.3 ship with the Java Management Ex
NetApp OnCommand Unified Manager for Linux versions 7.2 through 7.3 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service bound to the network, and are susceptible to unauthenticated remote code execution.
cvelistv5nvd
CVE-2018-5486HIGHCVSS 7.8v7.2 though 7.32018-04-25
CVE-2018-5486 [HIGH] CWE-306 CVE-2018-5486: NetApp OnCommand Unified Manager for Linux versions 7.2 though 7.3 ship with the Java Debug Wire Pro
NetApp OnCommand Unified Manager for Linux versions 7.2 though 7.3 ship with the Java Debug Wire Protocol (JDWP) enabled which allows unauthorized local attackers to execute arbitrary code.
cvelistv5nvd