Vulnerability in NetApp ONTAP 9 (July 10, 2026)
A vulnerability has been discovered in NetApp ONTAP 9. It allows an attacker to cause remote denial of service and data integrity breaches.
CSIRTS triage
- What
- A vulnerability allows an attacker to cause remote denial of service and data integrity breaches.
- Who is affected
- Deployments of NetApp ONTAP 9 are affected.
- Urgency
- Remediation is urgent due to the potential for remote denial of service and data integrity issues.
- Action
- Patch to the latest version of NetApp ONTAP 9.
AI-assisted analysis generated from the source advisory — verify against the original.
⚡ Watch ONTAP 9
Get an email when a new ONTAP 9 advisory drops — max one per day, one-click unsubscribe.
Details
Original advisory: https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0857/
Exploitation outlook
EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.
- Low exploitation riskCVE-2026-355470.32% 30-day exploitation probability — currently an unlikely target, but scores change as exploit code circulates. Riskier than 24% of all scored CVEs.
Referenced CVEs
| CVE | CSIRTS overview | External |
|---|---|---|
| CVE-2026-35547 | coverage & exploitation status | NVD · CVE.org |
More from CERT-FR Avis de sécurité
- unknownVulnerability in CPython (July 10, 2026)2026-07-10
- unknownMultiple vulnerabilities in Ubuntu Linux kernel (July 10, 2026)2026-07-10
- unknownMultiple vulnerabilities in Progress MOVEit Transfer (July 10, 2026)2026-07-10
- unknownMultiple vulnerabilities in Red Hat Linux kernel (July 10, 2026)2026-07-10
- unknownMultiple vulnerabilities in Suricata (July 10, 2026)2026-07-10