MetroCluster Tiebreaker for clustered Data ONTAP in versions before 1.2 discloses sensitive information in cleartext which may be viewed by an unauthenticated user.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/92495 | Third Party Advisory VDB Entry |
https://kb.netapp.com/support/s/article/cve-2016-6820-sensitive-information-disclosure-in-metrocluster-tiebreaker-for-clustered-data-ontap?language=en_US | Patch Vendor Advisory |
https://security.netapp.com/advisory/ntap-20160816-0001/ |
Configurations
History
No history.
Information
Published : 2017-01-11 16:59
Updated : 2024-02-28 15:44
NVD link : CVE-2016-6820
Mitre link : CVE-2016-6820
CVE.ORG link : CVE-2016-6820
JSON object : View
Products Affected
netapp
- metrocluster_tiebreaker
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor