CVE-2016-6495

MEDIUM

NetApp Data ONTAP <8.2.4P5 - Info Disclosure

Title source: llm

Description

NetApp Data ONTAP before 8.2.4P5, when operating in 7-Mode, allows remote attackers to obtain information about the volumes configured for HTTP access.

References (1)

[Patch, Vendor Advisory] https://kb.netapp.com/support/s/article/NTAP-20160929-0001

Scores

CVSS v3 5.9

EPSS 0.0030

EPSS Percentile 52.8%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Classification

CWE

CWE-200

Status published

Affected Products (2)

netapp/data_ontap < 8.2.4

n/a/n/a

Timeline

Published Feb 07, 2017

Tracked Since Feb 18, 2026