exploitDog

CVE-2018-5495

Опубликовано: 14 нояб. 2018

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

All StorageGRID Webscale versions are susceptible to a vulnerability which could permit an unauthenticated attacker to communicate with systems on the same network as the StorageGRID Webscale Admin Node via HTTP or to take over services on the Admin Node.

Ссылки

https://security.netapp.com/advisory/ntap-20181114-0001/
Vendor Advisory
https://security.netapp.com/advisory/ntap-20181114-0001/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netapp:storagegrid_webscale:-:*:*:*:*:*:*:*

EPSS

Процентиль: 72%

0.00735

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-f3j2-qmmf-mrrq

CVSS3: 9.8

github

больше 3 лет назад

All StorageGRID Webscale versions are susceptible to a vulnerability which could permit an unauthenticated attacker to communicate with systems on the same network as the StorageGRID Webscale Admin Node via HTTP or to take over services on the Admin Node.

EPSS

Процентиль: 72%

0.00735

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-noinfo