CVE-2018-5498

Name of the Vulnerable Software and Affected Versions: Clustered Data ONTAP versions 9.0 through 9.4

Description: The issue allows remote authenticated attackers to cause a Denial of Service (DoS) in NFS and SMB environments. Exploitation of this issue enables a remote authenticated attacker to cause a Denial of Service (DoS) on affected versions of clustered Data ONTAP configured for multiprotocol access.

Recommendations: For Clustered Data ONTAP versions 9.0 through 9.4, consider restricting access to the NFS and SMB environments to minimize the risk of exploitation until a patch is available. As a temporary workaround, limit multiprotocol access configurations to reduce the attack surface. At the moment, there is no information about a newer version that contains a fix for this issue.