PT-2016-7249 · Netapp · Netapp Plug-In For Symantec Netbackup
Published
2016-12-05
·
Updated
2016-12-23
·
CVE-2016-7171
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
NetApp Plug-in for Symantec NetBackup versions prior to 2.0.1
Description
The issue arises from the use of a non-unique server certificate, which makes the system susceptible to impersonation.
Recommendations
For versions prior to 2.0.1, update to version 2.0.1 or later to resolve the issue.
Fix
Improper Certificate Validation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netapp Plug-In For Symantec Netbackup