18 matches found
EUVD-2017-6967
Malware in sbrugna...
EUVD-2015-7785
Malware in sbrugna...
EUVD-2018-17251
Malware in sbrugna...
CVE-2025-26512
SnapCenter versions prior to 6.0.1P1 and 6.1P1 are susceptible to a vulnerability which may allow an authenticated SnapCenter Server user to become an admin user on a remote system where a SnapCenter plug-in has been installed...
CVE-2023-27316
SnapCenter versions 4.8 through 4.9 are susceptible to a vulnerability which may allow an authenticated SnapCenter Server user to become an admin user on a remote system where a SnapCenter plug-in has been installed...
CVE-2023-27316 Privilege Escalation Vulnerability in SnapCenter
SnapCenter versions 4.8 through 4.9 are susceptible to a vulnerability which may allow an authenticated SnapCenter Server user to become an admin user on a remote system where a SnapCenter plug-in has been installed...
CVE-2018-5482
NetApp SnapCenter Server prior to 4.1 does not set the secure flag for a sensitive cookie in an HTTPS session which can allow the transmission of the cookie in plain text over an unencrypted channel...
CVE-2018-5482
NetApp SnapCenter Server prior to 4.1 is affected by a vulnerability where a sensitive cookie is not secured with the Secure flag in HTTPS sessions, potentially allowing the cookie to be transmitted in cleartext over an unencrypted channel. Root cause: missing Secure attribute on a sensitive cook...
CVE-2017-15515
NetApp SnapCenter Server prior to 4.0 is susceptible to cross site scripting vulnerability that could allow a privileged user to inject arbitrary scripts into the custom secondary policy label field...
CVE-2017-15515
NetApp SnapCenter Server prior to 4.0 is susceptible to cross site scripting vulnerability that could allow a privileged user to inject arbitrary scripts into the custom secondary policy label field...
Cross site request forgery (csrf)
NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery CSRF vulnerability which could be used to cause an unintended authenticated action in the user interface...
CVE-2017-15516
NetApp SnapCenter Server versions 1.1–2.x are vulnerable to Cross-Site Request Forgery (CSRF) that can cause unintended authenticated actions in the UI. The issue is caused by CSRF in the server’s web interface, enabling an attacker to exploit a user’s authenticated session to perform actions wit...
Design/Logic Flaw
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups...
CVE-2015-7887
NetApp SnapCenter Server 1.0 allows remote authenticated users to list and delete backups...
CVE-2016-1502
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors...
CVE-2016-1502
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors...
Authentication flaw
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors...
NetApp SnapCenter Server Authentication Bypass Vulnerability
NetApp SnapCenter is a suite of applications that provide the ability to back up, verify, clone, and restore NetApp storage systems.NetApp SnapCenter Server is a server edition. A security vulnerability exists in NetApp SnapCenter Server that allows an attacker to bypass the authentication...