Medium severity5.3NVD Advisory· Published Apr 10, 2017· Updated May 13, 2026

CVE-2017-7345

Description

NetApp OnCommand Performance Manager and OnCommand Unified Manager for Clustered Data ONTAP before 7.1P1 improperly bind the Java Management Extension Remote Method Invocation (aka JMX RMI) service to the network, which allows remote attackers to obtain sensitive information via unspecified vectors.

Affected products

NetApp/Clustered Data Ontap
cpe:2.3:a:netapp:clustered_data_ontap:*:*:*:*:*:*:*:*
Range: <=7.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/97537nvdThird Party AdvisoryVDB Entry
kb.netapp.com/support/s/article/NTAP-20170331-0002nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000