Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netapp clustered data ontap 9.9.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-27003
Clustered Data ONTAP versions before 9.5P18, 9.6P15, 9.7P14, 9.8P5 and 9.9.1 are missing an X-Frame-Options header which could allow a clickjacking attack.
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.5
Netapp Clustered Data Ontap 9.6
Netapp Clustered Data Ontap 9.7
Netapp Clustered Data Ontap 9.8
2.1
CVSSv2
CVE-2021-27001
Clustered Data ONTAP versions 9.x before 9.5P18, 9.6P16, 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to a vulnerability which could allow an authenticated privileged local malicious user to arbitrarily modify Compliance-mode WORM data prior to the end of the retention period.
Netapp Clustered Data Ontap 9.6
Netapp Clustered Data Ontap 9.5
Netapp Clustered Data Ontap 9.7
Netapp Clustered Data Ontap 9.8
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.9.1
NA
CVE-2024-21985
ONTAP 9 versions before 9.9.1P18, 9.10.1P16, 9.11.1P13, 9.12.1P10 and 9.13.1P4 are susceptible to a vulnerability which could allow an authenticated user with multiple remote accounts with differing roles to perform actions via REST API beyond their intended privilege. Possible a...
Netapp Clustered Data Ontap 9.9.1
Netapp Clustered Data Ontap 9.10.1
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.11.1
Netapp Clustered Data Ontap 9.12.1
Netapp Clustered Data Ontap 9.13.1
NA
CVE-2024-21982
ONTAP versions 9.4 and higher are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information to unprivileged attackers when the object-store profiler command is being run by an administrative user.
Netapp Clustered Data Ontap 9.8
Netapp Clustered Data Ontap 9.9.1
Netapp Clustered Data Ontap 9.11.1
Netapp Clustered Data Ontap
Netapp Clustered Data Ontap 9.10.1
Netapp Clustered Data Ontap 9.12.1
Netapp Clustered Data Ontap 9.13.1
NA
CVE-2023-27314
ONTAP 9 versions before 9.8P19, 9.9.1P16, 9.10.1P12, 9.11.1P8, 9.12.1P2 and 9.13.1 are susceptible to a vulnerability which could allow a remote unauthenticated malicious user to cause a crash of the HTTP service.
Netapp Clustered Data Ontap 9.9.1
Netapp Clustered Data Ontap 9.8
Netapp Clustered Data Ontap 9.10.0
Netapp Clustered Data Ontap 9.10.1
Netapp Clustered Data Ontap 9.12.0
Netapp Clustered Data Ontap 9.13.0
Netapp Clustered Data Ontap
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started