Vulnerabilities (CVE)

Vendor filter

Netapp Subscribe

Product filter

Clustered Data Ontap Subscribe

Filter

31 total CVE
CVE Vendors Products Updated CVSS
CVE-2017-14583 1 Netapp 1 Clustered Data Ontap 2018-01-05 4.0
NetApp Clustered Data ONTAP versions 9.x prior to 9.1P10 and 9.2P2 are susceptible to a vulnerability which allows an attacker to cause a Denial of Service (DoS) in SMB environments.
CVE-2017-5201 1 Netapp 1 Clustered Data Ontap 2017-11-29 2.7
NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allow remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors, a different vulnerability than CVE-2016-3064.
CVE-2016-3064 1 Netapp 1 Clustered Data Ontap 2017-11-16 4.0
NetApp Clustered Data ONTAP before 8.2.4P4 and 8.3.x before 8.3.2P2 allows remote authenticated users to obtain sensitive cluster and tenant information via unspecified vectors.
CVE-2016-1563 1 Netapp 1 Clustered Data Ontap 2017-11-16 5.8
NetApp Clustered Data ONTAP 8.3.1 does not properly verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
CVE-2015-8020 1 Netapp 1 Clustered Data Ontap 2017-11-16 4.3
Clustered Data ONTAP versions 8.0, 8.3.1, and 8.3.2 contain a default privileged account which under certain conditions can be used for unauthorized information disclosure.
CVE-2017-12420 1 Netapp 1 Clustered Data Ontap 2017-08-26 6.5
Heap-based buffer overflow in the SMB implementation in NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allows remote authenticated users to cause a denial of service or execute arbitrary code.
CVE-2017-7947 1 Netapp 1 Clustered Data Ontap 2017-08-08 5.0
NetApp Clustered Data ONTAP before 8.3.2P11, 9.0 before P4, and 9.1 before P5 allow attackers to obtain sensitive password information by leveraging logging of passwords entered non-interactively on the command line.
CVE-2016-3997 1 Netapp 1 Clustered Data Ontap 2017-07-05 6.8
NetApp Clustered Data ONTAP allows man-in-the-middle attackers to obtain sensitive information, gain privileges, or cause a denial of service by leveraging failure to enable SMB signing enforcement in its default state.
CVE-2017-7345 1 Netapp 1 Clustered Data Ontap 2017-04-17 5.0
NetApp OnCommand Performance Manager and OnCommand Unified Manager for Clustered Data ONTAP before 7.1P1 improperly bind the Java Management Extension Remote Method Invocation (aka JMX RMI) service to the network, which allows remote attackers to...
CVE-2017-5988 1 Netapp 1 Clustered Data Ontap 2017-04-15 5.0
NetApp Clustered Data ONTAP 8.1 through 9.1P1, when NFS or SMB is enabled, allows remote attackers to cause a denial of service via unspecified vectors.
CVE-2016-4341 1 Netapp 1 Clustered Data Ontap 2017-02-24 5.0
NetApp Clustered Data ONTAP before 8.3.2P7 allows remote attackers to obtain SMB share information via unspecified vectors.