NetApp 產品多個漏洞

影響

• 阻斷服務
• 資料洩露
• 篡改

受影響之系統或技術

• NetApp E-Series Performance Analyzer
• AFF Baseboard Management Controller (BMC) - A700s
• Brocade Fabric Operating System Firmware
• E-Series SANtricity OS Controller Baseboard Management Controller (BMC) - EF600A
• FAS/AFF Baseboard Management Controller (BMC) - 8300/8700/A400
• NetApp HCI Baseboard Management Controller (BMC) - H610C
• NetApp HCI Baseboard Management Controller (BMC) - H610S
• NetApp HCI Baseboard Management Controller (BMC) - H615C
• NetApp SolidFire & HCI Management Node
• NetApp VASA Provider for Clustered Data ONTAP 9.6 and above
• Snap Creator Framework
• NetApp HCI Compute Node (Bootstrap OS)
• NetApp SolidFire & HCI Storage Node (Element Software)

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

• 安裝供應商提供的修補程式，詳情請參閱以下連結：
  https://security.netapp.com/advisory/ntap-20210513-0001/
  https://security.netapp.com/advisory/ntap-20210513-0006/
  https://security.netapp.com/advisory/ntap-20210513-0007/
  https://security.netapp.com/advisory/ntap-20210513-0010/

漏洞識別碼

• CVE-2020-13954
• CVE-2020-35508
• CVE-2021-2161
• CVE-2021-2163
• CVE-2021-27358

資料來源

• SecurityWizardry
• NetApp

相關連結

• https://www.securitywizardry.com/the-radar-page/alert-details#alerts
• https://security.netapp.com/advisory/
• https://security.netapp.com/advisory/ntap-20210513-0001/
• https://security.netapp.com/advisory/ntap-20210513-0006/
• https://security.netapp.com/advisory/ntap-20210513-0007/
• https://security.netapp.com/advisory/ntap-20210513-0010/