CVE-2026-22052

Medium CVSS: 5.3

ONTAP versions 9.12.1 and higher with S3 NAS buckets are susceptible to an information disclosure vulnerability. Successful exploit could allow an authenticated attacker to view a listing of the contents in a directory for which they lack permission.

Vendor

Netapp

Product

Ontap

CWE

CWE-209

Yayın Tarihi

2026-03-05 00:15:56

Güncelleme

2026-03-13 01:37:59

Source Identifier

security-alert@netapp.com

KEV Date Added

Kategoriler

CWE-209 Ontap MEDIUM Netapp 2026

Referanslar

https://security.netapp.com/advisory/NTAP-20260304-0001

Benzer Kayıtlar

Medium

CVE-2026-22050

ONTAP versions 9.16.1 prior to 9.16.1P9 and 9.17.1 prior to 9.17.1P2 with snapshot locking enabled are susceptible to a…

Medium

CVE-2025-26514

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a Reflected Cr…

High

CVE-2025-26515

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 without Single Sign-on enabled ar…

Medium

CVE-2025-26516

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a Denial of Se…

Medium

CVE-2025-26517

StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a privilege es…

High

CVE-2025-26513

The installer for SAN Host Utilities for Windows versions prior to 8.0 is susceptible to a vulnerability which when succ…