CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15518

All versions of OnCommand API Services prior to 2.1 and NetApp Service Level Manager prior to 1.0RC4 log a privileged database user account password. All users are urged to move to a fixed version. Since the affected password is changed during every upgrade/installation no further action is required.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.6%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 2.1

References

Products affected by CVE-2017-15518

Netapp » Oncommand Api Services » Version: N/A

cpe:2.3:a:netapp:oncommand_api_services:-
Netapp » Oncommand Api Services » Version: 1.0

cpe:2.3:a:netapp:oncommand_api_services:1.0
Netapp » Oncommand Api Services » Version: 1.1

cpe:2.3:a:netapp:oncommand_api_services:1.1
Netapp » Oncommand Api Services » Version: 1.2

cpe:2.3:a:netapp:oncommand_api_services:1.2
Netapp » Oncommand Api Services » Version: 2.0

cpe:2.3:a:netapp:oncommand_api_services:2.0
Netapp » Service Level Manager » Version: N/A

cpe:2.3:a:netapp:service_level_manager:-
Netapp » Service Level Manager » Version: 1.0

cpe:2.3:a:netapp:service_level_manager:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15518

Products

Pricing

Contact Us