Authentication Bypass Vulnerability in NetApp OnCommand Workflow Automation
CVE-2016-1894

8.1HIGH

Key Information:

Vendor: Netapp
Status: Oncommand Workflow Automation
Vendor: CVE Published:; 7 February 2017

What is CVE-2016-1894?

An authentication bypass vulnerability exists in NetApp OnCommand Workflow Automation prior to version 3.1P2, allowing remote attackers to gain unauthorized access through unspecified methods. This can potentially compromise system integrity and expose sensitive data.

References

https://security.netapp.com/advisory/ntap-20160310-0001/

x_refsource_CONFIRM

https://kb.netapp.com/support/s/article/cve-2016-1894-aut...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 7, 2017
Vulnerability Reserved
Jan 13, 2016

Netapp

What is CVE-2016-1894?

References

CVSS V3.1

Timeline