Description
Multiple unspecified vulnerabilities in NetApp Data ONTAP, as used on NetApp and IBM eServer platforms, allow remote attackers to execute arbitrary commands, cause a denial of service (system crash), or obtain sensitive information, probably related to insufficient access control for HTTP requests. NOTE: this may overlap CVE-2008-3160.
References (5)
Core 5
Core References
Various Sources x_refsource_misc
http://now.netapp.com/NOW/products/cpc/cpc0807-01.shtml
Various Sources x_refsource_misc
http://now.netapp.com/NOW/products/cpc/cpc0807-03.shtml
Various Sources x_refsource_misc
http://now.netapp.com/NOW/products/cpc/cpc0807-02.shtml
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/44265
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/329772
Scores
EPSS
0.0342
EPSS Percentile
87.6%
Details
CWE
CWE-264
Status
published
Products (1)
netapp/data_ontap
Published
Jul 28, 2008
Tracked Since
Feb 18, 2026