138 matches found
CVE-2023-27316 Privilege Escalation Vulnerability in SnapCenter
SnapCenter versions 4.8 through 4.9 are susceptible to a vulnerability which may allow an authenticated SnapCenter Server user to become an admin user on a remote system where a SnapCenter plug-in has been installed...
CVE-2023-27316
CVE-2023-27316 affects NetApp SnapCenter 4.8–4.9, where an authenticated SnapCenter Server user can escalate to an admin on a remote system with a SnapCenter plug-in installed. The connected documents corroborate a privilege-escalation impact but do not provide detailed exploit steps or confirmed...
CVE-2023-27313
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow an authenticated unprivileged user to gain access as an admin user...
CVE-2023-27312
SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are susceptible to a vulnerability which may allow authenticated unprivileged users to modify email and snapshot name settings within the VMware vSphere user interface...
CVE-2023-27313
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow an authenticated unprivileged user to gain access as an admin user...
Code injection
SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are susceptible to a vulnerability which may allow authenticated unprivileged users to modify email and snapshot name settings within the VMware vSphere user interface...
Spoofing
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow an authenticated unprivileged user to gain access as an admin user...
CVE-2023-27313
This CVE affects NetApp SnapCenter. A vulnerability exists in SnapCenter versions 3.x and 4.x prior to 4.9 that may allow an authenticated unprivileged user to gain administrative access. The issue is demonstrated across multiple sources and is characterized as a privilege-escalation risk (authen...
CVE-2023-27313 Privilege Escalation Vulnerability in SnapCenter
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow an authenticated unprivileged user to gain access as an admin user...
CVE-2023-27313 Privilege Escalation Vulnerability in SnapCenter
SnapCenter versions 3.x and 4.x prior to 4.9 are susceptible to a vulnerability which may allow an authenticated unprivileged user to gain access as an admin user...
CVE-2023-27312 Privilege Escalation Vulnerability in SnapCenter Plugin for VMware vSphere
SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are susceptible to a vulnerability which may allow authenticated unprivileged users to modify email and snapshot name settings within the VMware vSphere user interface...
CVE-2023-27312 Privilege Escalation Vulnerability in SnapCenter Plugin for VMware vSphere
SnapCenter Plugin for VMware vSphere versions 4.6 prior to 4.9 are susceptible to a vulnerability which may allow authenticated unprivileged users to modify email and snapshot name settings within the VMware vSphere user interface...
CVE-2023-27312
NetApp SnapCenter Plugin for VMware vSphere is vulnerable in versions 4.6 through 4.8 (and 4.6–4.9 context) due to insufficient access control, allowing authenticated unprivileged users to modify email and snapshot name settings in the vSphere UI. Affected component: SnapCenter Plugin for VMware ...
NetApp SnapCenter Security Vulnerability
NetApp SnapCenter is a suite of applications from Network Appliance NetApp that provides the ability to back up, authenticate, clone, and restore NetApp storage systems. A security vulnerability exists in NetApp SnapCenter versions 4.8 through 4.9 that originates from allowing authenticated...
PT-2023-21064 · Netapp · Snapcenter
Name of the Vulnerable Software and Affected Versions: SnapCenter versions 4.8 through 4.9 Description: The issue allows an authenticated SnapCenter Server user to potentially become an admin user on a remote system where a SnapCenter plug-in has been installed. Recommendations: For SnapCenter...
NetApp SnapCenter Security Vulnerability
NetApp SnapCenter is a suite of applications from Network Appliance NetApp, Inc. that provides the ability to back up, verify, clone, and restore NetApp storage systems. A security vulnerability exists in NetApp SnapCenter version 4.6 VMware vSphere versions prior to 4.9 that originates from...
NetApp SnapCenter Security Vulnerability
NetApp SnapCenter is a suite of applications from Network Appliance NetApp that provides the ability to back up, verify, clone, and restore NetApp storage systems. A security vulnerability exists in SnapCenter versions 3.x and 4.x VMware vSphere versions prior to 4.9, which stems from a...
PT-2023-21061 · Netapp · Snapcenter
Name of the Vulnerable Software and Affected Versions: SnapCenter versions 3.x and 4.x prior to 4.9 Description: The issue may allow an authenticated unprivileged user to gain access as an admin user. Recommendations: For SnapCenter versions 3.x and 4.x prior to 4.9, update to version 4.9 or late...
Vulnerability fixed in Netapp SnapCenter
Netapp has fixed a vulnerability in SnapCenter. A unauthenticated malicious party could exploit the vulnerability to gain access to the backup environment with administrator privileges. This allows the malicious party to gain access to sensitive information, manipulate data or cause a...
CVE-2023-1096
SnapCenter versions 4.7 prior to 4.7P2 and 4.8 prior to 4.8P1 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to gain access as an admin user...