Lucene search

[email protected]NVD:CVE-2008-3349

HistoryJul 28, 2008 - 5:41 p.m.

CVE-2008-3349

2008-07-2817:41:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.011

Percentile

84.7%

JSON

Multiple unspecified vulnerabilities in NetApp Data ONTAP, as used on NetApp and IBM eServer platforms, allow remote attackers to execute arbitrary commands, cause a denial of service (system crash), or obtain sensitive information, probably related to insufficient access control for HTTP requests. NOTE: this may overlap CVE-2008-3160.

Affected configurations

Nvd

Node

netappdata_ontap

AND

ibmn_series_storage_server

netappfas900

VendorProductVersionCPE
netappdata_ontap*cpe:2.3:o:netapp:data_ontap:*:*:*:*:*:*:*:*
ibmn_series_storage_server*cpe:2.3:h:ibm:n_series_storage_server:*:*:*:*:*:*:*:*
netappfas900*cpe:2.3:h:netapp:fas900:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
netapp	data_ontap	*	cpe:2.3:o:netapp:data_ontap::::::::
ibm	n_series_storage_server	*	cpe:2.3:h:ibm:n_series_storage_server::::::::
netapp	fas900	*	cpe:2.3:h:netapp:fas900::::::::

References

now.netapp.com/NOW/products/cpc/cpc0807-01.shtml

now.netapp.com/NOW/products/cpc/cpc0807-02.shtml

now.netapp.com/NOW/products/cpc/cpc0807-03.shtml

www.kb.cert.org/vuls/id/329772

exchange.xforce.ibmcloud.com/vulnerabilities/44265

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

Low

EPSS

0.011

Percentile

84.7%

JSON

Related for NVD:CVE-2008-3349

prion2 cve2 cvelist2 nvd1