CVE-2025-26512

Critical CVSS: 9.9

SnapCenter versions prior to
6.0.1P1 and 6.1P1 are susceptible to a vulnerability which may allow an
authenticated SnapCenter Server user to become an admin user on a remote
system where a SnapCenter plug-in has been installed.

Vendor

Netapp

Product

Snapcenter

CWE

CWE-266

Yayın Tarihi

2025-03-24 22:15:13

Güncelleme

2026-01-16 15:15:58

Source Identifier

security-alert@netapp.com

KEV Date Added

Kategoriler

CWE-266 Snapcenter CRITICAL Netapp 2025

Referanslar

https://security.netapp.com/advisory/NTAP-20250324-0001 https://security.netapp.com/advisory/ntap-20250324-0001/

Benzer Kayıtlar

Medium

CVE-2026-22052

ONTAP versions 9.12.1 and higher with S3 NAS buckets are susceptible to an information disclosure vulnerability. Success…

Medium

CVE-2026-22050

ONTAP versions 9.16.1 prior to 9.16.1P9 and 9.17.1 prior to 9.17.1P2 with snapshot locking enabled are susceptible to a…

Medium

CVE-2025-26514

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a Reflected Cr…

High

CVE-2025-26515

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 without Single Sign-on enabled ar…

Medium

CVE-2025-26516

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a Denial of Se…

Medium

CVE-2025-26517

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a privilege es…