CVE-2020-8588

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
03/02/2021
Last modified:
08/02/2021

Description

Clustered Data ONTAP versions prior to 9.3P20 and 9.5P15 are susceptible to a vulnerability which could allow unauthorized tenant users to discover the existence of data on other Storage Virtual Machines (SVMs).

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:netapp:clustered_data_ontap:*:*:*:*:*:*:*:* 9.3 (excluding)
cpe:2.3:a:netapp:clustered_data_ontap:*:*:*:*:*:*:*:* 9.4 (including) 9.5 (excluding)
cpe:2.3:a:netapp:clustered_data_ontap:9.3:-:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p1:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p10:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p2:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p3:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p4:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p5:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p6:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p7:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p8:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:p9:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.3:rc1:*:*:*:*:*:*
cpe:2.3:a:netapp:clustered_data_ontap:9.5:-:*:*:*:*:*:*


References to Advisories, Solutions, and Tools