CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-26988

Clustered Data ONTAP versions prior to 9.3P21, 9.5P16, 9.6P12, 9.7P8 and 9.8 are susceptible to a vulnerability which could allow unauthorized tenant users to discover information related to converting a 7-Mode directory to Cluster-mode such as Storage Virtual Machine (SVM) names, volume names, directory paths and Job IDs.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 34.6%

CVSS Severity

CVSS v3 Score 3.5

CVSS v2 Score 2.7

References

https://security.netapp.com/advisory/NTAP-20210303-0001
https://security.netapp.com/advisory/NTAP-20210303-0001

Products affected by CVE-2021-26988

Netapp » Data Ontap » Version: 9.3.0

cpe:2.3:o:netapp:data_ontap:9.3.0
Netapp » Data Ontap » Version: 9.5.0

cpe:2.3:o:netapp:data_ontap:9.5.0
Netapp » Data Ontap » Version: 9.6.0

cpe:2.3:o:netapp:data_ontap:9.6.0
Netapp » Data Ontap » Version: 9.7.0

cpe:2.3:o:netapp:data_ontap:9.7.0
Netapp » Data Ontap » Version: 9.8.0

cpe:2.3:o:netapp:data_ontap:9.8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-26988

Products

Pricing

Contact Us