CVE-2024-21988
5.3
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
Summary
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.7.0.9 and 11.8.0.5 are susceptible to disclosure of sensitive information via complex MiTM attacks due to a vulnerability in the SSH cryptographic implementation.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NetApp | StorageGRID (formerly StorageGRID Webscale) | 0 < 11.7.0.9 | affected |
| NetApp | StorageGRID (formerly StorageGRID Webscale) | 0 < 11.8.0.5 | affected |
Weaknesses
- 321
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.