Security Advisory

CVE-2016-6904

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-12-11 15:00:00

Last updated 2024-09-17 00:35:49

Assigner netapp

State PUBLISHED

Description

Versions of VASA Provider for Clustered Data ONTAP prior to 7.0P1 contain a web server that accepts plain text authentication. This could allow an unauthenticated attacker to obtain authentication credentials.

← Browse all CVEs View on cve.org ↗