ONTAP Select Deploy administration utility versions 2.12 & 2.12.1 ship with an HTTP service bound to the network allowing unauthenticated remote attackers to perform administrative actions.
2019-09-24T20:15:12.027
2024-11-21T04:45:04.137
Modified
CVSSv3.1: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | netapp | ontap_select_deploy_administration_utility | 2.12 | Yes |
| Application | netapp | ontap_select_deploy_administration_utility | 2.12.1 | Yes |