CVE-2017-8919

NetApp OnCommand API Services before 1.2P3 logs the LDAP BIND password when a user attempts to log in using the REST API, which allows remote authenticated users to obtain sensitive password information via unspecified vectors.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:netapp:oncommand_api_services:*:*:*:*:*:*:*:*

History

11 May 2021, 15:11

Type Values Removed Values Added
CPE cpe:2.3:a:netapp:oncommand_api:*:*:*:*:*:*:*:* cpe:2.3:a:netapp:oncommand_api_services:*:*:*:*:*:*:*:*

Information

Published : 2017-07-25 18:29

Updated : 2021-05-11 15:11


NVD link : CVE-2017-8919

Mitre link : CVE-2017-8919


JSON object : View

Products Affected

netapp

  • oncommand_api_services