Authentication Bypass and Sensitive Information Disclosure/Modification in NetApp Data ONTAP

Authentication Bypass and Sensitive Information Disclosure/Modification in NetApp Data ONTAP

CVE-2015-7746 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

NetApp Data ONTAP before 8.2.4, when operating in 7-Mode, allows remote attackers to bypass authentication and (1) obtain sensitive information from or (2) modify volumes via vectors related to UTF-8 in the volume language.

Learn more about our Web Application Penetration Testing UK.