CVE-2020-8571 — Storagegrid vulnerability

4 documents4 sources

Severity

7.5HIGHNVD

EPSS

0.9%

top 23.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Netapp Storagegrid

Timeline

PublishedMar 13

Latest updateMay 24

Description

StorageGRID (formerly StorageGRID Webscale) versions 10.0.0 through 11.3 prior to 11.2.0.8 and 11.3.0.4 are susceptible to a vulnerability which allows an unauthenticated remote attacker to cause a Denial of Service (DoS).

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDnetapp/storagegrid10.0.0 — 11.2.0.8+1

▶CVEListV5netapp/storagegridVersions 10.0.0 through 11.3 prior to 11.2.0.8 and 11.3.0.4

🔴Vulnerability Details

GHSA

GHSA-8w4r-fjx3-hxx6: StorageGRID (formerly StorageGRID Webscale) versions 10↗2022-05-24

▶

CVEList

CVE-2020-8571: StorageGRID (formerly StorageGRID Webscale) versions 10↗2020-03-13

▶

💬Community

Bugzilla

CVE-2019-8571 webkitgtk: Multiple memory corruption issues leading to arbitrary code execution↗2020-09-08

▶