Privilege Escalation Vulnerability in SAN Host Utilities for Windows
CVE-2025-26513

7HIGH

Key Information:

Vendor: Netapp
Status: San Host Utilities For Windows
Vendor: CVE Published:; 7 August 2025

What is CVE-2025-26513?

The SAN Host Utilities for Windows, specifically in versions prior to 8.0, has a significant vulnerability that can be exploited by a local user. If successfully utilized, this vulnerability enables the user to escalate their privileges, potentially compromising the integrity and security of the system. It is crucial for users of affected versions to apply the necessary updates to mitigate risks associated with this flaw.

Affected Version(s)

SAN Host Utilities for Windows 0 < 8.0

References

https://security.netapp.com/advisory/NTAP-20250806-0001

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 7, 2025
Vulnerability Reserved
Feb 11, 2025

Netapp

What is CVE-2025-26513?

Affected Version(s)

References

CVSS V3.1

Timeline