Code injection

2019-04-2914:29:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

55.2%

JSON

Element Plug-in for vCenter Server versions prior to 4.2.3 may disclose sensitive account information to an unauthenticated attacker. NetApp HCI Compute Node versions prior to 1.4P2 bundle affected versions of Element Plug-in for vCenter Server.

CPENameOperatorVersion
element_plug-in_for_vcenter_serverlt4.2.3
hyper_converged_infrastructure_compute_nodele1.4

CPE	Name	Operator	Version
	element_plug-in_for_vcenter_server	lt	4.2.3
	hyper_converged_infrastructure_compute_node	le	1.4

References

www.securityfocus.com/bid/108105

security.netapp.com/advisory/ntap-20190426-0001/