CVE-2021-26989Clustered Data Ontap vulnerability

3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.6%
top 30.60%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Netapp Clustered Data OntapNetapp Data Ontap
Timeline
PublishedMar 4
Latest updateMay 24

Description

Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P9 and 9.8 are susceptible to a vulnerability which could allow a remote authenticated attacker to cause a Denial of Service (DoS) on clustered Data ONTAP configured for SMB access.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5netapp/clustered_data_ontapPrior to 9.3P21, 9.5P16, 9.6P12, 9.7P9 and 9.8
NVDnetapp/data_ontap5 versions+4

Patches

Patch: security.netapp.comPatch: security.netapp.com

🔴Vulnerability Details

2
GHSA
GHSA-g5xj-292f-45cf: Clustered Data ONTAP versions prior to 92022-05-24
CVEList
CVE-2021-26989: Clustered Data ONTAP versions prior to 92021-03-04