CVE-2016-1895

MEDIUM

NetApp Data ONTAP <8.2.5, <8.3.2P12 - DoS

Title source: llm

Description

NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to cause a denial of service via vectors related to unsafe user input string handling.

References (1)

[Vendor Advisory] https://kb.netapp.com/support/s/article/NTAP-20170831-0003

Scores

CVSS v3 6.5

EPSS 0.0052

EPSS Percentile 66.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-134

Status published

Products (3)

netapp/data_ontap 8.3.2p12

netapp/data_ontap 9.0

netapp/data_ontap < 8.2.4

Published Sep 01, 2017

Tracked Since Feb 18, 2026