NetApp 產品多個漏洞

影響

• 阻斷服務
• 資料洩露
• 篡改

受影響之系統或技術

• OnCommand Workflow Automation
• OnCommand Insight
• Active IQ Unified Manager for VMware vSphere
• E-Series SANtricity OS Controller Software 11.x
• NetApp SolidFire & HCI Management Node
• ONTAP Select Deploy administration utility
• Clustered Data ONTAP
• Clustered Data ONTAP Antivirus Connector
• NetApp Manageability SDK
• NetApp SANtricity SMI-S Provider
• NetApp Storage Encryption

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

• 安裝供應商提供的修補程式，詳情請參閱以下連結：
  https://security.netapp.com/advisory/ntap-20210827-0001/
  https://security.netapp.com/advisory/ntap-20210827-0002/
  https://security.netapp.com/advisory/ntap-20210827-0003/
  https://security.netapp.com/advisory/ntap-20210827-0005/
  https://security.netapp.com/advisory/ntap-20210827-0010/

漏洞識別碼

• CVE-2020-10727
• CVE-2020-10771
• CVE-2021-3711
• CVE-2021-3712
• CVE-2021-26118
• CVE-2021-35942

資料來源

• SecurityWizardry
• NetApp

相關連結

• https://www.securitywizardry.com/the-radar-page/alert-details#alerts
• https://security.netapp.com/advisory/ntap-20210827-0001/
• https://security.netapp.com/advisory/ntap-20210827-0002/
• https://security.netapp.com/advisory/ntap-20210827-0003/
• https://security.netapp.com/advisory/ntap-20210827-0005/
• https://security.netapp.com/advisory/ntap-20210827-0010/