Vulnerability: Unauthorized Code Execution in NetApp OnCommand Unified Manager for Linux (Versions 7.2-7.3)

Vulnerability: Unauthorized Code Execution in NetApp OnCommand Unified Manager for Linux (Versions 7.2-7.3)

CVE-2018-5486 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

NetApp OnCommand Unified Manager for Linux versions 7.2 though 7.3 ship with the Java Debug Wire Protocol (JDWP) enabled which allows unauthorized local attackers to execute arbitrary code.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.