Denial of Service Vulnerability in Clustered Data ONTAP by NetApp
CVE-2019-5508

7.5HIGH

Key Information:

Vendor: Netapp
Status: Clustered Data Ontap
Vendor: CVE Published:; 25 October 2019

What is CVE-2019-5508?

The vulnerability in Clustered Data ONTAP versions 9.2 through 9.4 allows an attacker to execute a denial of service (DoS) attack using l2ping. This can disrupt the availability of the affected services, leading to significant downtime and potential operational losses for organizations that rely on this data management system.

Affected Version(s)

Clustered Data ONTAP 9.2 and higher

References

https://security.netapp.com/advisory/ntap-20191024-0001/

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 25, 2019
Vulnerability Reserved
Jan 7, 2019

Netapp

What is CVE-2019-5508?

Affected Version(s)

References

CVSS V3.1

Timeline