What is the severity of CVE-2020-8581?

CVE-2020-8581 is rated as a high severity vulnerability due to its potential to allow an authenticated but unauthorized attacker to overwrite arbitrary data.

How do I fix CVE-2020-8581?

To fix CVE-2020-8581, upgrade your Clustered Data ONTAP to version 9.3P20 or 9.5 or later.

What systems are affected by CVE-2020-8581?

CVE-2020-8581 affects Clustered Data ONTAP versions prior to 9.3P20 and 9.5, including all versions from 9.3 and 9.4 to 9.5.

What type of attack does CVE-2020-8581 facilitate?

CVE-2020-8581 allows an authenticated user to overwrite arbitrary data on systems with VMware vStorage support enabled.

Is there any workaround for CVE-2020-8581?

There are currently no known workarounds for CVE-2020-8581 other than applying the necessary upgrades to the affected systems.

Vulnerability/
CVE-2020-8581

medium

6.5

19/1/2021

4/8/2024

CVE-2020-8581

First published: Tue Jan 19 2021(Updated: )

Clustered Data ONTAP versions prior to 9.3P20 and 9.5 are susceptible to a vulnerability which could allow an authenticated but unauthorized attacker to overwrite arbitrary data when VMware vStorage support is enabled.

Credit: security-alert@netapp.com

Affected Software	Affected Version	How to fix
IBM Data ONTAP	<9.3
IBM Data ONTAP	>=9.4<=9.5
IBM Data ONTAP	=9.3
IBM Data ONTAP	=9.3-p1
IBM Data ONTAP	=9.3-p10
IBM Data ONTAP	=9.3-p2
IBM Data ONTAP	=9.3-p3
IBM Data ONTAP	=9.3-p4
IBM Data ONTAP	=9.3-p5
IBM Data ONTAP	=9.3-p6
IBM Data ONTAP	=9.3-p7
IBM Data ONTAP	=9.3-p8
IBM Data ONTAP	=9.3-p9

Never miss a vulnerability like this again

Reference Links

https://security.netapp.com/advisory/ntap-20210119-0001/

Frequently Asked Questions

What is the severity of CVE-2020-8581?
CVE-2020-8581 is rated as a high severity vulnerability due to its potential to allow an authenticated but unauthorized attacker to overwrite arbitrary data.
How do I fix CVE-2020-8581?
To fix CVE-2020-8581, upgrade your Clustered Data ONTAP to version 9.3P20 or 9.5 or later.
What systems are affected by CVE-2020-8581?
CVE-2020-8581 affects Clustered Data ONTAP versions prior to 9.3P20 and 9.5, including all versions from 9.3 and 9.4 to 9.5.
What type of attack does CVE-2020-8581 facilitate?
CVE-2020-8581 allows an authenticated user to overwrite arbitrary data on systems with VMware vStorage support enabled.
Is there any workaround for CVE-2020-8581?
There are currently no known workarounds for CVE-2020-8581 other than applying the necessary upgrades to the affected systems.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/severity
agent/last-modified-date
agent/author
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/netapp
canonical/ibm data ontap
version/ibm data ontap/9.4
version/ibm data ontap/9.5
version/ibm data ontap/9.3
version/ibm data ontap/9.3-p1
version/ibm data ontap/9.3-p10
version/ibm data ontap/9.3-p2
version/ibm data ontap/9.3-p3
version/ibm data ontap/9.3-p4
version/ibm data ontap/9.3-p5
version/ibm data ontap/9.3-p6
version/ibm data ontap/9.3-p7
version/ibm data ontap/9.3-p8
version/ibm data ontap/9.3-p9

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.