CVE-2020-8589
First published: Wed Feb 03 2021(Updated: )
Clustered Data ONTAP versions prior to 9.3P20 and 9.5P15 are susceptible to a vulnerability which could allow unauthorized tenant users to discover the names of other Storage Virtual Machines (SVMs) and filenames on those SVMs.
Credit: security-alert@netapp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NetApp Clustered Data ONTAP | <9.3 | |
| NetApp Clustered Data ONTAP | >=9.4<9.5 | |
| NetApp Clustered Data ONTAP | =9.3 | |
| NetApp Clustered Data ONTAP | =9.3-p1 | |
| NetApp Clustered Data ONTAP | =9.3-p10 | |
| NetApp Clustered Data ONTAP | =9.3-p2 | |
| NetApp Clustered Data ONTAP | =9.3-p3 | |
| NetApp Clustered Data ONTAP | =9.3-p4 | |
| NetApp Clustered Data ONTAP | =9.3-p5 | |
| NetApp Clustered Data ONTAP | =9.3-p6 | |
| NetApp Clustered Data ONTAP | =9.3-p7 | |
| NetApp Clustered Data ONTAP | =9.3-p8 | |
| NetApp Clustered Data ONTAP | =9.3-p9 | |
| NetApp Clustered Data ONTAP | =9.3-rc1 | |
| NetApp Clustered Data ONTAP | =9.5 | |
| NetApp Clustered Data ONTAP | =9.5-p1 | |
| NetApp Clustered Data ONTAP | =9.5-p6 | |
| NetApp Clustered Data ONTAP | =9.5-p8 | |
| NetApp Clustered Data ONTAP | =9.5-p9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this NetApp Clustered Data ONTAP vulnerability?
The vulnerability ID for this NetApp Clustered Data ONTAP vulnerability is CVE-2020-8589.
What is the severity level of CVE-2020-8589?
CVE-2020-8589 has a severity level of low.
Which versions of Clustered Data ONTAP are affected by CVE-2020-8589?
Clustered Data ONTAP versions prior to 9.3P20 and 9.5P15 are affected by CVE-2020-8589.
What is the impact of CVE-2020-8589?
CVE-2020-8589 could allow unauthorized tenant users to discover the names of other Storage Virtual Machines (SVMs) and filenames on those SVMs.
Where can I find more information about CVE-2020-8589?
You can find more information about CVE-2020-8589 at the following reference link: [NetApp Security Advisory NTAP-20210201-0002](https://security.netapp.com/advisory/ntap-20210201-0002/)
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/netapp
- canonical/netapp clustered data ontap
- version/netapp clustered data ontap/9.4
- version/netapp clustered data ontap/9.3
- version/netapp clustered data ontap/9.3-p1
- version/netapp clustered data ontap/9.3-p10
- version/netapp clustered data ontap/9.3-p2
- version/netapp clustered data ontap/9.3-p3
- version/netapp clustered data ontap/9.3-p4
- version/netapp clustered data ontap/9.3-p5
- version/netapp clustered data ontap/9.3-p6
- version/netapp clustered data ontap/9.3-p7
- version/netapp clustered data ontap/9.3-p8
- version/netapp clustered data ontap/9.3-p9
- version/netapp clustered data ontap/9.3-rc1
- version/netapp clustered data ontap/9.5
- version/netapp clustered data ontap/9.5-p1
- version/netapp clustered data ontap/9.5-p6
- version/netapp clustered data ontap/9.5-p8
- version/netapp clustered data ontap/9.5-p9