CVE-2015-7746

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0030%

EPSS Percentile41.31th

PublishedSep 1, 2017

Last ModifiedMay 13, 2026

Vulnerability Description

NetApp Data ONTAP before 8.2.4, when operating in 7-Mode, allows remote attackers to bypass authentication and (1) obtain sensitive information from or (2) modify volumes via vectors related to UTF-8 in the volume language.

Affected Platforms (CPE)

💻

Netapp

Data Ontap

<= 8.2.3

References & Advisories

🔗 https://kb.netapp.com/support/index?page=content&id=9010049

Related Vulnerabilities

CVE-2008-334910.0

Multiple unspecified vulnerabilities in NetApp Data ONTAP, as used on NetApp and IBM eServer platforms, allow remote attackers to ...

CVE-2008-316010.0

Multiple unspecified vulnerabilities in IBM Data ONTAP 7.1 before 7.1.3, as used by IBM System Storage N series Filer and IBM Syst...

CVE-2008-096010.0

SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; (3) e...

CVE-2016-66679.8

NetApp OnCommand Unified Manager for Clustered Data ONTAP 6.3 through 6.4P1 contain a default privileged account, which allows rem...