Information disclosure

2017-01-1116:59:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

48.5%

JSON

Clustered Data ONTAP versions 8.0, 8.3.1, and 8.3.2 contain a default privileged account which under certain conditions can be used for unauthorized information disclosure.

CPENameOperatorVersion
clustered_data_ontapeq8.3.2
clustered_data_ontapeq8.0
clustered_data_ontapeq8.3.1

Name	Operator	Version
clustered_data_ontap	eq	8.3.2
clustered_data_ontap	eq	8.0
clustered_data_ontap	eq	8.3.1

References

www.securityfocus.com/bid/92329

kb.netapp.com/support/s/article/cve-2015-8020-default-privileged-account-credentials-vulnerability-in-in-clustered-data-ontap?language=en_US

security.netapp.com/advisory/ntap-20160802-0001/