Clustered Data ONTAP versions prior to 9.3P20 are susceptible to a vulnerability which could allow an attacker to discover node names via AutoSupport bundles even when the –remove-private-data parameter is set to true.
[
{
"product": "Clustered Data ONTAP",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Versions prior to 9.3P20"
}
]
}
]