CVE-2023-27314

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 12, 2023

Updated: Oct 18, 2023

CWE ID 400

Summary

CVE-2023-27314 is a newly disclosed vulnerability affecting ONTAP versions 9.8P19, 9.9.1P16, 9.10.1P12, 9.11.1P8, 9.12.1P2, and 9.13.1. This issue permits a remote, unauthenticated attacker to induce a crash of the HTTP service, potentially leading to denial-of-service conditions or further exploitation. The precise cause of the vulnerability remains undisclosed, but affected users are urged to apply the relevant patches as soon as possible to mitigate risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

NetApp Clustered Data ONTAP

Affected Vendors

NetApp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s8sDeR
https://www.cve.org/CVERecord?id=CVE-2023-27314
https://nvd.nist.gov/vuln/detail/CVE-2023-27314

Back to Vulnerability Database