CVE-2024-21987

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Feb 16, 2024

Updated: Dec 16, 2024

CWE ID 285

CWE ID 863

Summary

CVE-2024-21987 is a vulnerability affecting SnapCenter versions 4.8 and below. This issue grants authenticated SnapCenter Server users the ability to modify system logging configuration settings, potentially leading to unintended consequences or unauthorized access to system information. This vulnerability could pose a risk to an organization's security and data integrity. Upgrading to SnapCenter version 5.0 or higher is recommended to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

NetApp SnapCenter

Affected Vendors

NetApp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uA-yT_
https://www.cve.org/CVERecord?id=CVE-2024-21987
https://nvd.nist.gov/vuln/detail/CVE-2024-21987

Back to Vulnerability Database