CVE-2024-21982
published 2024-01-12CVE-2024-21982: ONTAP versions 9.4 and higher are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information to…
medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
ONTAP versions 9.4 and higher are susceptible to a vulnerability
which when successfully exploited could lead to disclosure of sensitive
information to unprivileged attackers when the object-store profiler
command is being run by an administrative user.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netapp | clustered_data_ontap | — | — |
| netapp | clustered_data_ontap | — | — |
| netapp | clustered_data_ontap | — | — |
| netapp | clustered_data_ontap | — | — |
| netapp | clustered_data_ontap | — | — |
| netapp | clustered_data_ontap | — | — |
| netapp | clustered_data_ontap | >= 9.4 < 9.8 | 9.8 |
| netapp | ontap_9 | >= 9.10.1 < 9.10.1P16 | 9.10.1P16 |
| netapp | ontap_9 | >= 9.11.1 < 9.11.1P13 | 9.11.1P13 |
| netapp | ontap_9 | >= 9.12.1 < 9.12.1P8 | 9.12.1P8 |
| netapp | ontap_9 | >= 9.13.1 < 9.13.1P4 | 9.13.1P4 |
| netapp | ontap_9 | >= 9.4 < 9.8P21 | 9.8P21 |
| netapp | ontap_9 | >= 9.9.1 < 9.9.1P18 | 9.9.1P18 |