Clustered Data ONTAP 9.0 and higher Denial of Service Vulnerability

Summary

Clustered Data ONTAP versions 9.0 through 9.4 are susceptible to a vulnerability which allows remote authenticated attackers to cause a Denial of Service (DoS) in NFS and SMB environments

Credit:

The information has been provided by Vendor.

The original article can be found at: https://security.netapp.com/advisory/ntap-20190115-0001/


Details

The exploitation of this vulnerability will allow a remote authenticated attacker to cause a Denial of Service (DoS) on affected versions of clustered Data ONTAP configured for multiprotocol access.

Vulnerable Systems:

  • NetApp Clustered Data ONTAP 9.4
  • NetApp Clustered Data ONTAP 9.3
  • NetApp Clustered Data ONTAP 9.2
  • NetApp Clustered Data ONTAP 9.1
  • NetApp Clustered Data ONTAP 9.0

CVE Information:
CVE-2018-5498

Disclosure Timeline:
Publish Date: 01/15/2019

Categories: News