PT-2016-7249 · Netapp · Netapp Plug-In For Symantec Netbackup

Publicado

2016-12-05

·

Atualizado

2016-12-23

·

CVE-2016-7171

CVSS v2.0

6.8

Média

VetorAV:N/AC:M/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions NetApp Plug-in for Symantec NetBackup versions prior to 2.0.1
Description The issue arises from the use of a non-unique server certificate, which makes the system susceptible to impersonation.
Recommendations For versions prior to 2.0.1, update to version 2.0.1 or later to resolve the issue.

Correção

Improper Certificate Validation

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-295

Identificadores relacionados

CVE-2016-7171

Produtos afetados

Netapp Plug-In For Symantec Netbackup