NetApp Products Multiple Vulnerabilities
Release Date:
12 Jun 2023
5368
Views
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in NetApp Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, sensitive information disclosure and data manipulation on the targeted system.
Impact
- Denial of Service
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Active IQ Unified Manager for Linux
- Active IQ Unified Manager for Microsoft Windows
- Active IQ Unified Manager for VMware vSphere
- Astra Trident
- E-Series SANtricity OS Controller Software 11.x
- E-Series SANtricity Unified Manager and Web Services Proxy
- FAS/AFF Baseboard Management Controller (BMC) - 8300/8700/A400/C400
- FAS/AFF BIOS - A900/9500
- NetApp HCI Baseboard Management Controller (BMC) - H300S/H500S/H700S/H410S
- NetApp HCI Baseboard Management Controller (BMC) - H410C
- NetApp SMI-S Provider
- Management Services for Element Software and NetApp HCI
- ONTAP 9 (formerly Clustered Data ONTAP)
- ONTAP Antivirus Connector
- ONTAP tools for VMware vSphere
- ONTAP Select Deploy administration utility
- SnapManager for Hyper-V
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://security.netapp.com/advisory/ntap-20230526-0001/
- https://security.netapp.com/advisory/ntap-20230526-0005/
- https://security.netapp.com/advisory/ntap-20230526-0007/
- https://security.netapp.com/advisory/ntap-20230526-0009/
- https://security.netapp.com/advisory/ntap-20230526-0010/
- https://security.netapp.com/advisory/ntap-20230601-0001/
- https://security.netapp.com/advisory/ntap-20230601-0002/
- https://security.netapp.com/advisory/ntap-20230601-0003/
- https://security.netapp.com/advisory/ntap-20230601-0004/
- https://security.netapp.com/advisory/ntap-20230601-0005/
- https://security.netapp.com/advisory/ntap-20230601-0006/
- https://security.netapp.com/advisory/ntap-20230601-0007/
- https://security.netapp.com/advisory/ntap-20230601-0008/
- https://security.netapp.com/advisory/ntap-20230601-0009/
- https://security.netapp.com/advisory/ntap-20230601-0010/
- https://security.netapp.com/advisory/ntap-20230609-0001/
- https://security.netapp.com/advisory/ntap-20230609-0002/
- https://security.netapp.com/advisory/ntap-20230609-0003/
- https://security.netapp.com/advisory/ntap-20230609-0004/
- https://security.netapp.com/advisory/ntap-20230609-0005/
- https://security.netapp.com/advisory/ntap-20230609-0006/
- https://security.netapp.com/advisory/ntap-20230609-0007/
- https://security.netapp.com/advisory/ntap-20230609-0008/
- https://security.netapp.com/advisory/ntap-20230609-0009/
- https://security.netapp.com/advisory/ntap-20230609-0010/
Vulnerability Identifier
- CVE-2020-24736
- CVE-2021-31239
- CVE-2022-4744
- CVE-2022-21216
- CVE-2023-1387
- CVE-2023-1670
- CVE-2023-1829
- CVE-2023-1872
- CVE-2023-1989
- CVE-2023-2006
- CVE-2023-2176
- CVE-2023-2197
- CVE-2023-2235
- CVE-2023-2236
- CVE-2023-20873
- CVE-2023-24534
- CVE-2023-24536
- CVE-2023-26048
- CVE-2023-26049
- CVE-2023-27043
- CVE-2023-28319
- CVE-2023-28320
- CVE-2023-28321
- CVE-2023-28322
- CVE-2023-28484
- CVE-2023-28656
- CVE-2023-28724
- CVE-2023-28856
- CVE-2023-29469
- CVE-2023-30846
- CVE-2023-31047
- CVE-2023-31436
Source
Related Link
- https://security.netapp.com/advisory/ntap-20230526-0001/
- https://security.netapp.com/advisory/ntap-20230526-0005/
- https://security.netapp.com/advisory/ntap-20230526-0007/
- https://security.netapp.com/advisory/ntap-20230526-0009/
- https://security.netapp.com/advisory/ntap-20230526-0010/
- https://security.netapp.com/advisory/ntap-20230601-0001/
- https://security.netapp.com/advisory/ntap-20230601-0002/
- https://security.netapp.com/advisory/ntap-20230601-0003/
- https://security.netapp.com/advisory/ntap-20230601-0004/
- https://security.netapp.com/advisory/ntap-20230601-0005/
- https://security.netapp.com/advisory/ntap-20230601-0006/
- https://security.netapp.com/advisory/ntap-20230601-0007/
- https://security.netapp.com/advisory/ntap-20230601-0008/
- https://security.netapp.com/advisory/ntap-20230601-0009/
- https://security.netapp.com/advisory/ntap-20230601-0010/
- https://security.netapp.com/advisory/ntap-20230609-0001/
- https://security.netapp.com/advisory/ntap-20230609-0002/
- https://security.netapp.com/advisory/ntap-20230609-0003/
- https://security.netapp.com/advisory/ntap-20230609-0004/
- https://security.netapp.com/advisory/ntap-20230609-0005/
- https://security.netapp.com/advisory/ntap-20230609-0006/
- https://security.netapp.com/advisory/ntap-20230609-0007/
- https://security.netapp.com/advisory/ntap-20230609-0008/
- https://security.netapp.com/advisory/ntap-20230609-0009/
- https://security.netapp.com/advisory/ntap-20230609-0010/
Share with