PT-2019-17719 · Netapp · Ontap Select Deploy Administration Utility

Publicado

2019-09-24

·

Atualizado

2021-07-21

·

CVE-2019-5504

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions ONTAP Select Deploy administration utility versions 2.12 through 2.12.1
Description The issue allows unauthenticated remote attackers to perform administrative actions due to an HTTP service bound to the network.
Recommendations For versions 2.12 through 2.12.1, consider restricting access to the HTTP service to prevent unauthenticated remote attacks until a patch is available.

Correção

Missing Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-306

Identificadores relacionados

CVE-2019-5504

Produtos afetados

Ontap Select Deploy Administration Utility