CVE Vulnerability

CVE-2008-3349

Multiple unspecified vulnerabilities in NetApp Data ONTAP, as used on NetApp and IBM eServer platforms, allow remote attackers to execute arbitrary commands, cause a denial of service (system crash), or obtain sensitive information, probably related to insufficient access control for HTTP requests. NOTE: this may overlap CVE-2008-3160.

10 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 10 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://now.netapp.com/NOW/products/cpc/cpc0807-01.shtml
http://now.netapp.com/NOW/products/cpc/cpc0807-02.shtml
http://now.netapp.com/NOW/products/cpc/cpc0807-03.shtml
http://www.kb.cert.org/vuls/id/329772 US Government Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/44265
Configurations

Configuration 1
Information

Published : 2008-07-28 05:41

Updated : 2017-08-08 01:31

NVD link : CVE-2008-3349

Mitre link : CVE-2008-3349

Products Affected
No products.
CWE
CWE-264

NVD-CWE-noinfo