PT-2023-21062 · Netapp · Ontap
Published
2023-10-12
·
Updated
2023-10-18
·
CVE-2023-27314
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
ONTAP 9 versions prior to 9.8P19
ONTAP 9 versions prior to 9.9.1P16
ONTAP 9 versions prior to 9.10.1P12
ONTAP 9 versions prior to 9.11.1P8
ONTAP 9 versions prior to 9.12.1P2
ONTAP 9 versions prior to 9.13.1
Description
The issue allows a remote unauthenticated attacker to cause a crash of the HTTP service.
Recommendations
For versions prior to 9.8P19, update to version 9.8P19 or later.
For versions prior to 9.9.1P16, update to version 9.9.1P16 or later.
For versions prior to 9.10.1P12, update to version 9.10.1P12 or later.
For versions prior to 9.11.1P8, update to version 9.11.1P8 or later.
For versions prior to 9.12.1P2, update to version 9.12.1P2 or later.
For versions prior to 9.13.1, update to version 9.13.1 or later.
Fix
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ontap