Vulnerabilities > Netapp > Oncommand System Manager > 9.4
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-08 | CVE-2020-8587 | Unspecified vulnerability in Netapp Oncommand System Manager 9.3/9.4 OnCommand System Manager 9.x versions prior to 9.3P20 and 9.4 prior to 9.4P3 are susceptible to a vulnerability that could allow HTTP clients to cache sensitive responses making them accessible to an attacker who has access to the system where the client runs. | 2.1 |
| 2020-03-24 | CVE-2019-17276 | Cross-site Scripting vulnerability in Netapp Oncommand System Manager 9.3/9.4 OnCommand System Manager versions 9.3 prior to 9.3P18 and 9.4 prior to 9.4P2 are susceptible to a cross site scripting vulnerability that could allow an authenticated attacker to inject arbitrary scripts into the SNMP Community Names label field. | 3.5 |