NetApp Products Multiple Vulnerabilities
Release Date:
17 May 2021
5353
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in NetApp Products, a remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, obtain sensitive information and data manipulation on the targeted system.
Impact
- Denial of Service
- Information Disclosure
- Data Manipulation
System / Technologies affected
- NetApp E-Series Performance Analyzer
- AFF Baseboard Management Controller (BMC) - A700s
- Brocade Fabric Operating System Firmware
- E-Series SANtricity OS Controller Baseboard Management Controller (BMC) - EF600A
- FAS/AFF Baseboard Management Controller (BMC) - 8300/8700/A400
- NetApp HCI Baseboard Management Controller (BMC) - H610C
- NetApp HCI Baseboard Management Controller (BMC) - H610S
- NetApp HCI Baseboard Management Controller (BMC) - H615C
- NetApp SolidFire & HCI Management Node
- NetApp VASA Provider for Clustered Data ONTAP 9.6 and above
- Snap Creator Framework
- NetApp HCI Compute Node (Bootstrap OS)
- NetApp SolidFire & HCI Storage Node (Element Software)
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor. For detail, please refer to the link below:
https://security.netapp.com/advisory/ntap-20210513-0001/
https://security.netapp.com/advisory/ntap-20210513-0006/
https://security.netapp.com/advisory/ntap-20210513-0007/
https://security.netapp.com/advisory/ntap-20210513-0010/
Vulnerability Identifier
Source
Related Link
- https://www.securitywizardry.com/the-radar-page/alert-details#alerts
- https://security.netapp.com/advisory/
- https://security.netapp.com/advisory/ntap-20210513-0001/
- https://security.netapp.com/advisory/ntap-20210513-0006/
- https://security.netapp.com/advisory/ntap-20210513-0007/
- https://security.netapp.com/advisory/ntap-20210513-0010/
Share with