The official site for Saudi CERT
NetApp Alert
8972
Warning Date
Severity Level
Warning Number
Target Sector
16 February, 2023
● Critical
2023-5465
All
NetApp has released security updates to address multiple vulnerabilities in the following products:
• 7-Mode Transition Tool
• Active IQ Unified Manager for Microsoft Windows
• Active IQ Unified Manager for VMware vSphere
• Cloud Volumes ONTAP Mediator
• Inventory Collect Tool
• NetApp Converged Systems Advisor Agent
• NetApp HCI Compute Node (Bootstrap OS)
• NetApp SolidFire & HCI Storage Node (Element Software)
• ONTAP Select Deploy administration utility
• NetApp HCI Baseboard Management Controller (BMC) - H300S/H500S/H700S/H410S
• NetApp HCI Baseboard Management Controller (BMC) - H410C]
• Management Services for Element Software and NetApp HCI
• Other Net App products (please refer to the security advisories)
Attacker could exploit these vulnerabilities to achieve the following:
• Sensitive Information Disclosure
• Denial of Service (DoS)
• addition or modification of data
The CERT team encourages users to update the affected versions and review NetApp security advisory:
https://security.netapp.com/advisory/ntap-20230216-0001/
https://security.netapp.com/advisory/ntap-20230216-0003/
https://security.netapp.com/advisory/ntap-20230216-0005/
https://security.netapp.com/advisory/ntap-20230216-0009/
https://security.netapp.com/advisory/ntap-20230216-0006/
https://security.netapp.com/advisory/ntap-20230216-0002/
https://security.netapp.com/advisory/ntap-20230216-0008/
https://security.netapp.com/advisory/ntap-20230216-0004/
https://security.netapp.com/advisory/ntap-20230216-0007/
Rate the content
Share the page
