Описание
ONTAP versions 9.16.1 prior to 9.16.1P9 and 9.17.1 prior to 9.17.1P2 with snapshot locking enabled are susceptible to a vulnerability which could allow a privileged remote attacker to set the snapshot expiry time to none.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:netapp:ontap:9.16.1:-:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.16.1:p1:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.16.1:p2:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.16.1:p3:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.16.1:p4:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.16.1:p5:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.16.1:p6:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.16.1:p7:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.16.1:p8:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.17.1:-:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9.17.1:p1:*:*:*:*:*:*
EPSS
Процентиль: 38%
0.00164
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-639
Связанные уязвимости
CVSS3: 4.3
github
26 дней назад
ONTAP versions 9.16.1 prior to 9.16.1P9 and 9.17.1 prior to 9.17.1P2 with snapshot locking enabled are susceptible to a vulnerability which could allow a privileged remote attacker to set the snapshot expiry time to none.
EPSS
Процентиль: 38%
0.00164
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-639