CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-7236

SQL injection vulnerability in NetApp OnCommand Unified Manager Core Package 5.x before 5.2.2P1 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 75.5%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2017-7236

Netapp » Oncommand Unified Manager Core Package » Version: 5.0

cpe:2.3:a:netapp:oncommand_unified_manager_core_package:5.0
Netapp » Oncommand Unified Manager Core Package » Version: 5.0.1

cpe:2.3:a:netapp:oncommand_unified_manager_core_package:5.0.1
Netapp » Oncommand Unified Manager Core Package » Version: 5.0.2

cpe:2.3:a:netapp:oncommand_unified_manager_core_package:5.0.2
Netapp » Oncommand Unified Manager Core Package » Version: 5.1

cpe:2.3:a:netapp:oncommand_unified_manager_core_package:5.1
Netapp » Oncommand Unified Manager Core Package » Version: 5.2

cpe:2.3:a:netapp:oncommand_unified_manager_core_package:5.2
Netapp » Oncommand Unified Manager Core Package » Version: 5.2.1

cpe:2.3:a:netapp:oncommand_unified_manager_core_package:5.2.1
Netapp » Oncommand Unified Manager Core Package » Version: 5.2.2

cpe:2.3:a:netapp:oncommand_unified_manager_core_package:5.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-7236

Products

Pricing

Contact Us