Sensitive Information Disclosure in NetApp OnCommand Balance
CVE-2014-9354

Currently unrated

Key Information:

Vendor: Netapp
Status: Oncommand Balance
Vendor: CVE Published:; 6 February 2015

What is CVE-2014-9354?

The NetApp OnCommand Balance software prior to version 4.2P3 is susceptible to a vulnerability that enables local users to access sensitive information through various unspecified vectors. This weakness is linked to the handling of cleartext storage, which poses a risk as sensitive data may be inadvertently exposed. Organizations using affected versions should assess their systems and apply necessary updates to mitigate potential information security threats.

References

https://kb.netapp.com/support/index?page=content&id=9010021

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 6, 2015
Vulnerability Reserved
Dec 9, 2014

Netapp

What is CVE-2014-9354?

References

Timeline