CVE-2015-7886

low

Published 2016-01-18 · Modified 2026-05-06

CVSS v3

3.7

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS v2

4.3

VIR risk

3.7

Description

NetApp Data ONTAP before 8.2.4P1, when 7-Mode and HTTP access are enabled, allows remote attackers to obtain sensitive volume information via unspecified vectors.

Predictions

Exploit likelihood

47%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://kb.netapp.com/support/index?page=content&id=9010055

References

http://kb.netapp.com/support/index?page=content&id=9010055
https://security.netapp.com/advisory/ntap-20160114-0002/
http://kb.netapp.com/support/index?page=content&id=9010055
https://security.netapp.com/advisory/ntap-20160114-0002/

CWEs

CWE-200

Verify integrity in audit chain (admin only). AS-IS.