NetApp OnCommand Balance before 4.2P2 contains a "default privileged account," which allows remote attackers to gain privileges via unspecified vectors.
oryginał ENCVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:CNetapp Oncommand Balance
APPNetapp≤ 4.2
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Powiązane podatności
CVE-2017-5638CRITICAL9.8⚠ KEVten sam produkt
The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect ex...
CVE-2016-3427CRITICAL9.8⚠ KEVten sam produkt
Unspecified vulnerability in Oracle Java SE 6u113, 7u99, and 8u77; Java SE Embedded 8u77; and JRockit R28.3.9 ...
CVE-2017-15095CRITICAL9.8ten sam produkt
A deserialization flaw was discovered in the jackson-databind in versions before 2.8.10 and 2.9.1, which could...
CVE-2017-7525CRITICAL9.8ten sam produkt
A deserialization flaw was discovered in the jackson-databind, versions before 2.6.7.1, 2.7.9.1 and 2.8.9, whi...
CVE-2017-10346CRITICAL9.6ten sam produkt
Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Hotspot). Supported ...