Unauthenticated Remote Code Execution in NetApp OnCommand Unified Manager for Linux Versions 7.2-7.3

Unauthenticated Remote Code Execution in NetApp OnCommand Unified Manager for Linux Versions 7.2-7.3

CVE-2018-5487 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

NetApp OnCommand Unified Manager for Linux versions 7.2 through 7.3 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service bound to the network, and are susceptible to unauthenticated remote code execution.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.