CVE-2019-5495

Summary

OnCommand Unified Manager for VMware vSphere, Linux and Windows prior to 9.5 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
NetAppOnCommand Unified Manager for VMware vSphere,Linux and Windows 7.2 and aboveVersions prior to 9.5affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References