Denial of Service Vulnerability in StorageGRID by NetApp
CVE-2020-8571

7.5HIGH

Key Information:

Vendor: Netapp
Status: Storagegrid (formerly Storagegrid Webscale)
Vendor: CVE Published:; 13 March 2020

What is CVE-2020-8571?

StorageGRID, a product by NetApp, is susceptible to a Denial of Service (DoS) vulnerability that enables unauthenticated remote attackers to disrupt services. This issue primarily affects versions from 10.0.0 to 11.3 before 11.2.0.8 and includes 11.3.0.4. The vulnerability poses significant risks to operations, allowing attackers to potentially cause service outages. It is crucial for users to ensure that their installations are updated to mitigate this risk.

Affected Version(s)

StorageGRID (formerly StorageGRID Webscale) Versions 10.0.0 through 11.3 prior to 11.2.0.8 and 11.3.0.4

References

https://security.netapp.com/advisory/ntap-20200313-0005/

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 13, 2020
Vulnerability Reserved
Feb 3, 2020

Netapp

What is CVE-2020-8571?

Affected Version(s)

References

CVSS V3.1

Timeline