CVE-2018-5481

Summary

OnCommand Unified Manager for 7-Mode (core package) prior to 5.2.4 uses cookies that lack the secure attribute in certain circumstances making it vulnerable to impersonation via man-in-the-middle (MITM) attacks.

Affected Software

VendorProductVersion RangeStatus
NetAppOnCommand Unified Manager for 7-Mode (core package)Versions prior to 5.2.4affected

Weaknesses

  • Man-in-the-middle (MITM)

ADP Enrichment

CVE Program Container

Additional References

References