Information Disclosure Vulnerability in Data ONTAP by NetApp
CVE-2018-5496

4.4MEDIUM

Key Information:

Vendor
Netapp
Status
Data Ontap Operating In 7-mode
Vendor
CVE Published:
4 December 2018

Summary

Data ONTAP operating in 7-Mode versions prior to 8.2.5P2 is vulnerable to a security issue that allows unauthorized users to access sensitive information. This exposure could lead to potential data breaches, magnifying risks for any organization utilizing this product. It is crucial for users to ensure they are running updated software to mitigate this vulnerability.

Affected Version(s)

Data ONTAP operating in 7-Mode Versions below 8.2.5P2

References

https://security.netapp.com/advisory/ntap-20181204-0001/
x_refsource_CONFIRM

CVSS V3.1

Score:
4.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2018-5496 : Information Disclosure Vulnerability in Data ONTAP by NetApp | SecurityVulnerability.io