Vulnerability Details CVE-2017-12420
Heap-based buffer overflow in the SMB implementation in NetApp Clustered Data ONTAP before 8.3.2P8 and 9.0 before P2 allows remote authenticated users to cause a denial of service or execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.4%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
Products affected by CVE-2017-12420
-
cpe:2.3:a:netapp:clustered_data_ontap:8.1.3
-
cpe:2.3:a:netapp:clustered_data_ontap:8.1.4
-
cpe:2.3:a:netapp:clustered_data_ontap:8.2
-
cpe:2.3:a:netapp:clustered_data_ontap:8.2.1
-
cpe:2.3:a:netapp:clustered_data_ontap:8.2.2
-
cpe:2.3:a:netapp:clustered_data_ontap:8.2.3
-
cpe:2.3:a:netapp:clustered_data_ontap:8.2.4
-
cpe:2.3:a:netapp:clustered_data_ontap:8.3
-
cpe:2.3:a:netapp:clustered_data_ontap:8.3.1
-
cpe:2.3:a:netapp:clustered_data_ontap:8.3.2
-
cpe:2.3:a:netapp:clustered_data_ontap:9.0