CVE-2016-3400
First published: Mon Jul 03 2017(Updated: )
NetApp Data ONTAP 8.1 and 8.2, when operating in 7-Mode, allows man-in-the-middle attackers to obtain sensitive information, gain privileges, or cause a denial of service via vectors related to the SMB protocol.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NetApp Data ONTAP | =8.1 | |
| NetApp Data ONTAP | =8.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-3400?
The severity of CVE-2016-3400 is rated high with a score of 7.5.
How do I fix CVE-2016-3400?
To fix CVE-2016-3400, it is recommended to update NetApp Data ONTAP to a version beyond 8.2 that is not operating in 7-Mode.
What are the risks associated with CVE-2016-3400?
CVE-2016-3400 allows man-in-the-middle attackers to obtain sensitive information, gain privileges, or cause a denial of service.
Which versions of NetApp Data ONTAP are affected by CVE-2016-3400?
CVE-2016-3400 affects NetApp Data ONTAP versions 8.1 and 8.2 when operating in 7-Mode.
What type of vulnerability is CVE-2016-3400 classified as?
CVE-2016-3400 is classified as a vulnerability related to improper access control, specifically identified as CWE-254.
- collector/nvd-index
- vendor/netapp
- product/data ontap
- canonical/netapp data ontap