Denial of Service Vulnerability in Clustered Data ONTAP by NetApp
CVE-2018-5498

4.4MEDIUM

Key Information:

Vendor: Netapp
Status: Clustered Data Ontap
Vendor: CVE Published:; 1 February 2019

What is CVE-2018-5498?

A vulnerability in Clustered Data ONTAP versions 9.0 to 9.4 allows remote authenticated attackers to trigger a Denial of Service (DoS) condition within NFS and SMB configurations. Exploiting this flaw may lead to disruptions in multiprotocol access for services hosted on affected systems, impacting availability and user access.

Affected Version(s)

Clustered Data ONTAP Versions 9.0 and higher

References

https://security.netapp.com/advisory/ntap-20190115-0001/

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 1, 2019
Vulnerability Reserved
Jan 12, 2018

Netapp

What is CVE-2018-5498?

Affected Version(s)

References

CVSS V3.1

Timeline