CVE-2020-8583
First published: Fri Nov 13 2020(Updated: )
Element Software versions prior to 12.2 and HCI versions prior to 1.8P1 are susceptible to a vulnerability which could allow an attacker to discover sensitive information by intercepting its transmission within an https session.
Credit: security-alert@netapp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netapp Hci | <=1.8 | |
| Netapp Element Os | >=10.0<12.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-8583?
CVE-2020-8583 is a vulnerability that exists in Element Software versions prior to 12.2 and HCI versions prior to 1.8P1, allowing attackers to intercept sensitive information transmitted within an https session.
How severe is CVE-2020-8583?
CVE-2020-8583 has a severity rating of 7.5, which is considered high.
Which software versions are affected by CVE-2020-8583?
Element Software versions prior to 12.2 and HCI versions prior to 1.8P1 are affected by CVE-2020-8583.
How can an attacker exploit CVE-2020-8583?
An attacker can exploit CVE-2020-8583 by intercepting the transmission of sensitive information within an https session.
Is there a fix available for CVE-2020-8583?
Yes, updating Element Software to version 12.2 or later, and HCI versions to 1.8P1 or later, can mitigate the vulnerability.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/severity
- agent/references
- agent/author
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/netapp
- canonical/netapp hci
- version/netapp hci/1.8
- canonical/netapp element os
- version/netapp element os/10.0