Two Netapp security advisories from March 22, 2024
113 Multiple Netapp StorageGRID Security Bulletins March 22, 2024 Two security advisories from NetApp address vulnerabilities CVE-2024-21983 and CVE-2024-21984 in its StorageGRID product. These gave an attacker the opportunity to intervene from a distance. Exploitation of these flaws could make it possible to inject indirect code (XSS) and cause a denial of service (DDos). Successful exploitation of CVE-2024-21984 could lead to the disclosure of sensitive information or unauthorized modification of data. CVE-2024-21983: Concerns a denial of service vulnerability in StorageGRID. Certain versions of StorageGRID are susceptible to a denial of service (DoS) vulnerability. A successful exploit by an authenticated attacker could result in an out-of-memory condition or a reboot of the […]
Two Netapp security advisories from March 22, 2024 Read more "
Arbitrary code, corrective, DDoS, Fault, NetApp, Data Breach, XSS