netapp clustered-data-ontap-antivirus-connector CVE-2016-8610 vulnerability in NetApp and Other Products
Published on November 13, 2017

product logo product logo product logo product logo product logo product logo
A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL server consume an excessive amount of CPU and fail to accept connections from other clients.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Weakness Type

What is a Resource Exhaustion Vulnerability?

The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

CVE-2016-8610 has been classified to as a Resource Exhaustion vulnerability or weakness.


Products Associated with CVE-2016-8610

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2016-8610 are published in these products:

NetApp Clustered Data Ontap Antivirus Connector
 
NetApp Data Ontap
 
NetApp Data Ontap Edge
 
NetApp E Series Santricity Os Controller
 
NetApp Host Agent
 
NetApp Oncommand Balance
 
NetApp Oncommand Unified Manager
 
NetApp Oncommand Workflow Automation
 
NetApp Ontap Select Deploy
 
NetApp Service Processor
 
NetApp Smi S Provider
 
NetApp Snapcenter Server
 
NetApp Snapdrive
 
NetApp Storagegrid
 
NetApp Storagegrid Webscale
 
OpenSSL
 
Debian Linux
 
NetApp Clustered Data Ontap
 
Red Hat Enterprise Linux Desktop
 
Red Hat Enterprise Linux Server
 
Red Hat Enterprise Linux Server Aus
 
Red Hat Enterprise Linux Server Eus
 
Red Hat Enterprise Linux Server Tus
 
Red Hat Enterprise Linux Workstation
 
Palo Alto Networks PAN-OS
 
Oracle Jd Edwards Enterpriseone Tools
 
Oracle Weblogic Server
 
Oracle Peoplesoft Enterprise Peopletools
 
Oracle Enterprise Manager Ops Center
 
Oracle Adaptive Access Manager
 
Oracle Application Testing Suite
 
Oracle Retail Predictive Application Server
 
Oracle Communications Ip Service Activator
 
Oracle Core Rdbms
 
Oracle Goldengate Application Adapters
 
Oracle Communications Analytics
 
Oracle Timesten In Memory Database
 

Affected Versions

OpenSSL:

Exploit Probability

EPSS
71.13%
Percentile
98.68%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.