EUVD-2026-9509

🗓️ 05 Mar 2026 00:31:11Reported by EUVDType

Authenticated attackers can view directory contents in NetApp ONTAP 9.12.1 and later with S3 buckets.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2026-22052	4 Mar 202623:22	–	attackerkb
Circl	CVE-2026-22052	4 Mar 202623:52	–	circl
CNNVD	NetApp ONTAP 安全漏洞	5 Mar 202600:00	–	cnnvd
CVE	CVE-2026-22052	4 Mar 202623:22	–	cve
Cvelist	CVE-2026-22052	4 Mar 202623:22	–	cvelist
Tenable Nessus	NetApp ONTAP S3 Information Disclosure Vulnerability (NTAP-20260304-0001)	12 Mar 202600:00	–	nessus
NVD	CVE-2026-22052	5 Mar 202600:15	–	nvd
OSV	CVE-2026-22052	5 Mar 202600:15	–	osv
Positive Technologies	PT-2026-23079	4 Mar 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-22052	6 Mar 202601:34	–	redhatcve

[
  {
    "enisaIdVendor": [
      {
        "id": "2e630bec-d64e-3466-8101-a033eba141d8",
        "vendor": {
          "name": "NetApp"
        }
      },
      {
        "id": "64f4c8b7-9d48-3291-a67f-1c88d94b03be",
        "vendor": {
          "name": "NetApp"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "eedd1479-22a7-3e54-ba3c-0047bf60dc65",
        "product": {
          "name": "ONTAP 9 "
        },
        "product_version": "9.12.1 and higher"
      }
    ]
  }
]

Source	Link
security	www.security.netapp.com/advisory/NTAP-20260304-0001
nvd	www.nvd.nist.gov/vuln/detail/CVE-2026-22052

05 Mar 2026 00:31Current

5.9Medium risk

Vulners AI Score5.9

CVSS 45.3

EPSS0.00192