NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to cause a denial of service via vectors related to unsafe user input string handling.
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Data_ontap | Netapp | * | 8.2.4 (including) |
Data_ontap | Netapp | 8.3.2p12 (including) | 8.3.2p12 (including) |
Data_ontap | Netapp | 9.0 (including) | 9.0 (including) |