Denial of Service Vulnerability in Clustered Data ONTAP by NetApp
CVE-2020-8579

7.5HIGH

Key Information:

Vendor
Netapp
Status
Clustered Data Ontap
Vendor
CVE Published:
27 October 2020

Summary

Clustered Data ONTAP versions 9.7 through 9.7P7 are vulnerable to an attack that allows a malicious user with access to an intercluster Logical Interface (LIF) to trigger a Denial of Service (DoS). This vulnerability could lead to service disruptions, impacting the availability of clustered resources and operations. Proper configuration and access controls should be enforced to mitigate the risk associated with this vulnerability.

Affected Version(s)

clustered Data ONTAP 9.7 through 9.7P7

References

https://security.netapp.com/advisory/NTAP-20201026-0001
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2020-8579 : Denial of Service Vulnerability in Clustered Data ONTAP by NetApp | SecurityVulnerability.io