Vulnerabilities > CVE-2016-6904 - Credentials Management vulnerability in Netapp Vasa Provider
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Versions of VASA Provider for Clustered Data ONTAP prior to 7.0P1 contain a web server that accepts plain text authentication. This could allow an unauthenticated attacker to obtain authentication credentials.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |