Vulnerability Details CVE-2020-8583
Element Software versions prior to 12.2 and HCI versions prior to 1.8P1 are susceptible to a vulnerability which could allow an attacker to discover sensitive information by intercepting its transmission within an https session.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.9%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2020-8583
-
cpe:2.3:a:netapp:hci:-
-
cpe:2.3:a:netapp:hci:1.4
-
cpe:2.3:a:netapp:hci:1.6
-
cpe:2.3:a:netapp:hci:1.7
-
cpe:2.3:a:netapp:hci:1.8
-
cpe:2.3:o:netapp:element_os:10.0
-
cpe:2.3:o:netapp:element_os:10.1
-
cpe:2.3:o:netapp:element_os:10.2
-
cpe:2.3:o:netapp:element_os:10.2.1
-
cpe:2.3:o:netapp:element_os:10.3
-
cpe:2.3:o:netapp:element_os:10.3.1
-
cpe:2.3:o:netapp:element_os:11.0
-
cpe:2.3:o:netapp:element_os:11.1
-
cpe:2.3:o:netapp:element_os:11.3
-
cpe:2.3:o:netapp:element_os:11.8
-
cpe:2.3:o:netapp:element_os:12.0