SnapCenter Server User Vulnerability
CVE-2024-21987

5.4MEDIUM

Key Information:

Vendor: NetApp
Status: SnapCenter
Vendor: CVE Published:; 16 February 2024

What is CVE-2024-21987?

SnapCenter versions 4.8 prior to 5.0 are susceptible to a vulnerability which could allow an authenticated SnapCenter Server user to modify system logging configuration settings

Affected Version(s)

SnapCenter 4.8 < 5.0

References

https://security.netapp.com/advisory/ntap-20240216-0001/

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 16, 2024
Vulnerability Reserved
Jan 3, 2024

NetApp

What is CVE-2024-21987?

Affected Version(s)

References

CVSS V3.1

Timeline