ONTAP versions 9.4 and higher are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information to unprivileged attackers when the object-store profiler command is being run by an administrative user.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Clustered_data_ontap | Netapp | 9.4 (including) | 9.8 (excluding) |
| Clustered_data_ontap | Netapp | 9.8 (including) | 9.8 (including) |
| Clustered_data_ontap | Netapp | 9.9.1 (including) | 9.9.1 (including) |
| Clustered_data_ontap | Netapp | 9.10.1 (including) | 9.10.1 (including) |
| Clustered_data_ontap | Netapp | 9.11.1 (including) | 9.11.1 (including) |
| Clustered_data_ontap | Netapp | 9.12.1 (including) | 9.12.1 (including) |
| Clustered_data_ontap | Netapp | 9.13.1 (including) | 9.13.1 (including) |