9.9.12

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

netapp

NVD

Published: 2021-11-01

Updated: 2022-07-12

Summary

System Manager 9.x versions 9.7 and higher prior to 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to a vulnerability which could allow a local attacker to discover plaintext iSCSI CHAP credentials.

Vulnerable Configurations

Part	Description	Count
Application	Netapp Netapp Ontap System Manager 9.7 Netapp Ontap System Manager 9.8 Netapp Ontap System Manager * Netapp Ontap System Manager 9.9.12	4

References

https://security.netapp.com/advisory/NTAP-20211029-0001/