NetApp OnCommand System Manager 2.1 and earlier allows remote attackers to include arbitrary files through specially crafted requests to the "diagnostic" page using the SnapMirror log path parameter.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/84062https://www.securityfocus.com/archive/1/526552
