NetApp 產品多個漏洞

影響

• 阻斷服務
• 資料洩露
• 篡改

受影響之系統或技術

• E-Series SANtricity OS Controller Baseboard Management Controller (BMC) - EF600A
• FAS/AFF Baseboard Management Controller (BMC) - A250/500f
• OnCommand Insight
• NetApp E-Series Performance Analyzer
• Brocade Fabric Operating System Firmware
• NetApp Cloud Backup (formerly AltaVault)
• ONTAP Select Deploy administration utility

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

• 安裝供應商提供的修補程式，詳情請參閱以下連結：
  https://security.netapp.com/advisory/ntap-20210521-0006/
  https://security.netapp.com/advisory/ntap-20210528-0006/
  https://security.netapp.com/advisory/ntap-20210528-0007/
  https://security.netapp.com/advisory/ntap-20210528-0008/
  https://security.netapp.com/advisory/ntap-20210528-0009/

漏洞識別碼

• CVE-2021-20197
• CVE-2021-20289
• CVE-2021-21267
• CVE-2021-25214
• CVE-2021-25215
• CVE-2021-25216
• CVE-2021-26296

資料來源

• SecurityWizardry
• NetApp

相關連結

• https://www.securitywizardry.com/the-radar-page/alert-details#alerts
• https://security.netapp.com/advisory/
• https://security.netapp.com/advisory/ntap-20210521-0006/
• https://security.netapp.com/advisory/ntap-20210528-0006/
• https://security.netapp.com/advisory/ntap-20210528-0007/
• https://security.netapp.com/advisory/ntap-20210528-0008/
• https://security.netapp.com/advisory/ntap-20210528-0009/