CVE-2021-26988

2021-03-0420:44:47

netapp

www.cve.org

4.4 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P8 and 9.8 are susceptible to a vulnerability which could allow unauthorized tenant users to discover information related to converting a 7-Mode directory to Cluster-mode such as Storage Virtual Machine (SVM) names, volume names, directory paths and Job IDs.

CNA Affected

[
  {
    "product": "Clustered Data ONTAP",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Prior to 9.3P21, 9.5P16, 9.6P12, 9.7P8 and 9.8"
      }
    ]
  }
]

References

security.netapp.com/advisory/NTAP-20210303-0001