Описание
OnCommand System Manager 9.x versions prior to 9.3P20 and 9.4 prior to 9.4P3 are susceptible to a vulnerability that could allow HTTP clients to cache sensitive responses making them accessible to an attacker who has access to the system where the client runs.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 9.0 (включая) до 9.3 (исключая)
Одно из
cpe:2.3:a:netapp:oncommand_system_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_system_manager:9.3:-:*:*:*:*:*:*
cpe:2.3:a:netapp:oncommand_system_manager:9.4:-:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.0018
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
OnCommand System Manager 9.x versions prior to 9.3P20 and 9.4 prior to 9.4P3 are susceptible to a vulnerability that could allow HTTP clients to cache sensitive responses making them accessible to an attacker who has access to the system where the client runs.
EPSS
Процентиль: 40%
0.0018
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
NVD-CWE-noinfo