Denial of Service Vulnerability in NetApp E-Series SANtricity OS Controller Software
CVE-2019-17273

6.5MEDIUM

Key Information:

Vendor: Netapp
Status: E-series Santricity Os Controller Software
Vendor: CVE Published:; 30 January 2020

Summary

The E-Series SANtricity OS Controller Software version 11.60.0 is vulnerable to a Denial of Service (DoS) attack when operating in IPv6 environments. This vulnerability permits unauthorized access that can lead to service disruption. Organizations using this software should assess their exposure and implement appropriate security measures to guard against potential exploitation. For further details, refer to the NetApp security advisory.

Affected Version(s)

E-Series SANtricity OS Controller Software 11.60.0

References

https://security.netapp.com/advisory/ntap-20200129-0001/

x_refsource_CONFIRM

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 30, 2020
Vulnerability Reserved
Oct 7, 2019