Communication Vulnerability in StorageGRID Webscale by NetApp
CVE-2018-5495

9.8CRITICAL

Key Information:

Vendor: Netapp
Status: Storagegrid Webscale
Vendor: CVE Published:; 14 November 2018

What is CVE-2018-5495?

StorageGRID Webscale by NetApp contains a vulnerability that allows unauthenticated attackers to interact with systems connected to the same network as the StorageGRID Webscale Admin Node. This could potentially enable the attacker to compromise services running on the Admin Node, posing a significant risk to network security and data integrity.

Affected Version(s)

StorageGRID Webscale All

References

https://security.netapp.com/advisory/ntap-20181114-0001/

x_refsource_CONFIRM

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 14, 2018
Vulnerability Reserved
Jan 12, 2018

Netapp

What is CVE-2018-5495?

Affected Version(s)

References

CVSS V3.1

Timeline