CVE-2019-5494

Summary

OnCommand Unified Manager 7-Mode prior to version 5.2.4 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
NetAppOnCommand Unified Manager 7-ModeVersions prior to 5.2.3affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References