What is the severity of CVE-2016-6667?

CVE-2016-6667 has a high severity rating due to the presence of a default privileged account that can be exploited by remote attackers.

How does CVE-2016-6667 allow remote code execution?

CVE-2016-6667 allows remote code execution through the exploitation of a default privileged account and unspecified vectors.

How do I fix CVE-2016-6667?

To fix CVE-2016-6667, eliminate the default privileged account or apply any available patches released by NetApp.

What could happen if CVE-2016-6667 is exploited?

If CVE-2016-6667 is exploited, an attacker could gain unauthorized access and execute arbitrary code on the affected system.

Vulnerability/
CVE-2016-6667

critical

9.8

7/2/2017

6/8/2024

CVE-2016-6667

First published: Tue Feb 07 2017(Updated: )

NetApp OnCommand Unified Manager for Clustered Data ONTAP 6.3 through 6.4P1 contain a default privileged account, which allows remote attackers to execute arbitrary code via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
NetApp OnCommand Unified Manager	=6.3
NetApp OnCommand Unified Manager	=6.4
NetApp OnCommand Unified Manager	=6.4-p1

Remedy

https://kb.netapp.com/support/s/article/NTAP-20161017-0002

Never miss a vulnerability like this again

Reference Links

https://kb.netapp.com/support/s/article/NTAP-20161017-0002

Frequently Asked Questions

What is the severity of CVE-2016-6667?
CVE-2016-6667 has a high severity rating due to the presence of a default privileged account that can be exploited by remote attackers.
How does CVE-2016-6667 allow remote code execution?
CVE-2016-6667 allows remote code execution through the exploitation of a default privileged account and unspecified vectors.
Which versions of NetApp are affected by CVE-2016-6667?
CVE-2016-6667 affects NetApp OnCommand Unified Manager for Clustered Data ONTAP versions 6.3, 6.4, and 6.4P1.
How do I fix CVE-2016-6667?
To fix CVE-2016-6667, eliminate the default privileged account or apply any available patches released by NetApp.
What could happen if CVE-2016-6667 is exploited?
If CVE-2016-6667 is exploited, an attacker could gain unauthorized access and execute arbitrary code on the affected system.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/last-modified-date
agent/severity
agent/description
agent/remedy
agent/author
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/netapp
canonical/netapp oncommand unified manager
version/netapp oncommand unified manager/6.3
version/netapp oncommand unified manager/6.4
version/netapp oncommand unified manager/6.4-p1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2016-6667?
CVE-2016-6667 has a high severity rating due to the presence of a default privileged account that can be exploited by remote attackers.
How does CVE-2016-6667 allow remote code execution?
CVE-2016-6667 allows remote code execution through the exploitation of a default privileged account and unspecified vectors.
Which versions of NetApp are affected by CVE-2016-6667?
CVE-2016-6667 affects NetApp OnCommand Unified Manager for Clustered Data ONTAP versions 6.3, 6.4, and 6.4P1.
How do I fix CVE-2016-6667?
To fix CVE-2016-6667, eliminate the default privileged account or apply any available patches released by NetApp.
What could happen if CVE-2016-6667 is exploited?
If CVE-2016-6667 is exploited, an attacker could gain unauthorized access and execute arbitrary code on the affected system.

CVE-2016-6667

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-6667?

How does CVE-2016-6667 allow remote code execution?

Which versions of NetApp are affected by CVE-2016-6667?

How do I fix CVE-2016-6667?

What could happen if CVE-2016-6667 is exploited?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2016-6667?

How does CVE-2016-6667 allow remote code execution?

Which versions of NetApp are affected by CVE-2016-6667?

How do I fix CVE-2016-6667?

What could happen if CVE-2016-6667 is exploited?