NetApp 產品多個漏洞
發佈日期:
2021年01月18日
1639
觀看次數
風險: 中度風險
類型: 伺服器 - 其他伺服器
於 NetApp 產品發現多個漏洞,遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、取得敏感資料及資料篡改。
影響
- 阻斷服務
- 資料洩露
- 篡改
受影響之系統或技術
- ONTAP Select Deploy administration utility
- FAS/AFF Baseboard Management Controller (BMC) - A250
- NetApp HCI Compute Node (Bootstrap OS)
- NetApp SolidFire & HCI Management Node
- NetApp SolidFire & HCI Storage Node (Element Software)
- FAS/AFF Baseboard Management Controller (BMC)
- Service Processor
解決方案
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
- 安裝供應商提供的修補程式,詳情請參閱以下連結:
https://security.netapp.com/advisory/ntap-20210115-0001/
https://security.netapp.com/advisory/ntap-20210115-0002/
https://security.netapp.com/advisory/ntap-20210115-0003/
https://security.netapp.com/advisory/ntap-20210115-0004/
https://security.netapp.com/advisory/ntap-20210115-0005/
https://security.netapp.com/advisory/ntap-20210115-0006/
https://security.netapp.com/advisory/ntap-20210115-0007/
https://security.netapp.com/advisory/ntap-20210115-0008/
漏洞識別碼
- CVE-2020-16590
- CVE-2020-16591
- CVE-2020-16592
- CVE-2020-16598
- CVE-2020-17530
- CVE-2020-17531
- CVE-2020-25613
- CVE-2020-27730
- CVE-2020-27821
- CVE-2020-29369
- CVE-2020-29374
資料來源
相關連結
- https://www.securitywizardry.com/the-radar-page/alert-details#alerts
- https://security.netapp.com/advisory/
- https://security.netapp.com/advisory/ntap-20210115-0001/
- https://security.netapp.com/advisory/ntap-20210115-0002/
- https://security.netapp.com/advisory/ntap-20210115-0003/
- https://security.netapp.com/advisory/ntap-20210115-0004/
- https://security.netapp.com/advisory/ntap-20210115-0005/
- https://security.netapp.com/advisory/ntap-20210115-0006/
- https://security.netapp.com/advisory/ntap-20210115-0007/
- https://security.netapp.com/advisory/ntap-20210115-0008/
分享至