CVE-2006-3569 - Vulnerability Details - OpenCVE

Unspecified vulnerability in NetApp Data ONTAP 7.0x through 7.0.4P8D9, 7.1x, 7.1.0.1x, and 7.2RC1, RC2, and RC3, as used in IBM N series Filers and other products, allows unauthorized users to gain access to privileged commands via unknown vectors, probably related to incorrect capabilities with the audit role.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	Network Appliance Data Ontap

Configuration 1 [-]

OR	cpe:2.3:a:ibm:network_appliance_data_ontap:7.0:::::::*
	cpe:2.3:a:ibm:network_appliance_data_ontap:7.0.4p8d9:::::::*
	cpe:2.3:a:ibm:network_appliance_data_ontap:7.1:::::::*
	cpe:2.3:a:ibm:network_appliance_data_ontap:7.1.0.1:::::::*
	cpe:2.3:a:ibm:network_appliance_data_ontap:7.2:rc1::::::
	cpe:2.3:a:ibm:network_appliance_data_ontap:7.2:rc2::::::
	cpe:2.3:a:ibm:network_appliance_data_ontap:7.2:rc3::::::

No data.

References

Link	Providers
http://now.netapp.com/NOW/products/vulnerability_0601/
http://secunia.com/advisories/20984
http://www-1.ibm.com/support/docview.wss?rs=0&uid=ssg1S1002910
http://www.osvdb.org/27134
http://www.securityfocus.com/bid/18951
http://www.vupen.com/english/advisories/2006/2761
https://exchange.xforce.ibmcloud.com/vulnerabilities/27651

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-07-13T01:00:00

Updated: 2024-08-07T18:30:34.423Z

Reserved: 2006-07-12T00:00:00

Link: CVE-2006-3569

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-07-13T01:05:00.000

Modified: 2024-11-21T00:13:55.103

Link: CVE-2006-3569

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-07-11T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in NetApp Data ONTAP 7.0x through 7.0.4P8D9, 7.1x, 7.1.0.1x, and 7.2RC1, RC2, and RC3, as used in IBM N series Filers and other products, allows unauthorized users to gain access to privileged commands via unknown vectors, probably related to incorrect capabilities with the audit role."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-19T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "27134", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/27134"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-1.ibm.com/support/docview.wss?rs=0&uid=ssg1S1002910"}, {"name": "ADV-2006-2761", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/2761"}, {"name": "18951", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/18951"}, {"name": "20984", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/20984"}, {"tags": ["x_refsource_MISC"], "url": "http://now.netapp.com/NOW/products/vulnerability_0601/"}, {"name": "data-ontap-unauthorized-command-execution(27651)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27651"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-3569", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in NetApp Data ONTAP 7.0x through 7.0.4P8D9, 7.1x, 7.1.0.1x, and 7.2RC1, RC2, and RC3, as used in IBM N series Filers and other products, allows unauthorized users to gain access to privileged commands via unknown vectors, probably related to incorrect capabilities with the audit role."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "27134", "refsource": "OSVDB", "url": "http://www.osvdb.org/27134"}, {"name": "http://www-1.ibm.com/support/docview.wss?rs=0&uid=ssg1S1002910", "refsource": "CONFIRM", "url": "http://www-1.ibm.com/support/docview.wss?rs=0&uid=ssg1S1002910"}, {"name": "ADV-2006-2761", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/2761"}, {"name": "18951", "refsource": "BID", "url": "http://www.securityfocus.com/bid/18951"}, {"name": "20984", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/20984"}, {"name": "http://now.netapp.com/NOW/products/vulnerability_0601/", "refsource": "MISC", "url": "http://now.netapp.com/NOW/products/vulnerability_0601/"}, {"name": "data-ontap-unauthorized-command-execution(27651)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27651"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T18:30:34.423Z"}, "title": "CVE Program Container", "references": [{"name": "27134", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/27134"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-1.ibm.com/support/docview.wss?rs=0&uid=ssg1S1002910"}, {"name": "ADV-2006-2761", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/2761"}, {"name": "18951", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/18951"}, {"name": "20984", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/20984"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://now.netapp.com/NOW/products/vulnerability_0601/"}, {"name": "data-ontap-unauthorized-command-execution(27651)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27651"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-3569", "datePublished": "2006-07-13T01:00:00", "dateReserved": "2006-07-12T00:00:00", "dateUpdated": "2024-08-07T18:30:34.423Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:network_appliance_data_ontap:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "530B16D0-0070-4BD9-9B95-2CA8BAE47B36", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:network_appliance_data_ontap:7.0.4p8d9:*:*:*:*:*:*:*", "matchCriteriaId": "D917F985-3880-49F0-8300-A909F57DB0EC", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:network_appliance_data_ontap:7.1:*:*:*:*:*:*:*", "matchCriteriaId": "85C3BD32-40B7-4B06-A1CD-D4068849E192", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:network_appliance_data_ontap:7.1.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "82AA7B6C-DB2F-4DB8-8880-2841B5D9BBAD", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:network_appliance_data_ontap:7.2:rc1:*:*:*:*:*:*", "matchCriteriaId": "220BBD91-6718-4054-B929-76DAC70E8682", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:network_appliance_data_ontap:7.2:rc2:*:*:*:*:*:*", "matchCriteriaId": "462228FB-7C82-4B7B-B263-280714040E9D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ibm:network_appliance_data_ontap:7.2:rc3:*:*:*:*:*:*", "matchCriteriaId": "0B15E408-AA76-420B-842F-26F97004DBF1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in NetApp Data ONTAP 7.0x through 7.0.4P8D9, 7.1x, 7.1.0.1x, and 7.2RC1, RC2, and RC3, as used in IBM N series Filers and other products, allows unauthorized users to gain access to privileged commands via unknown vectors, probably related to incorrect capabilities with the audit role."}, {"lang": "es", "value": "Vulnerabilidad no especificada en NetApp Data ONTAP 7.0x hasta la 7.0.4P8D9, 7.1x, 7.1.0.1x, y 7.2RC1, RC2, y RC3, tal y como se usan en IBM N series Filers y otros productos, permite a usuarios no autorizados ganar privilegios de acceso a comandos privilegiados a trav\u00e9s de vectores desconocidos, probablemente relacionados con capacidades incorrectas con la funci\u00f3n de auditoria."}], "id": "CVE-2006-3569", "lastModified": "2024-11-21T00:13:55.103", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-07-13T01:05:00.000", "references": [{"source": "cve@mitre.org", "url": "http://now.netapp.com/NOW/products/vulnerability_0601/"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/20984"}, {"source": "cve@mitre.org", "url": "http://www-1.ibm.com/support/docview.wss?rs=0&uid=ssg1S1002910"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/27134"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/18951"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/2761"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27651"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://now.netapp.com/NOW/products/vulnerability_0601/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/20984"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www-1.ibm.com/support/docview.wss?rs=0&uid=ssg1S1002910"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/27134"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/18951"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/2761"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/27651"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}