exploitDog

CVE-2022-38732

Опубликовано: 29 сент. 2022

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

SnapCenter versions prior to 4.7 shipped without Content Security Policy (CSP) implemented which could allow certain types of attacks that otherwise would be prevented.

Ссылки

https://security.netapp.com/advisory/NTAP-20220926-0001/
Vendor Advisory
https://security.netapp.com/advisory/NTAP-20220926-0001/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netapp:snapcenter:*:*:*:*:*:*:*:*

Версия до 4.7 (исключая)

EPSS

Процентиль: 51%

0.00277

Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-358

Связанные уязвимости

GHSA-76c5-fpfr-hgf7

CVSS3: 7.5

github

больше 3 лет назад

SnapCenter versions prior to 4.7 shipped without Content Security Policy (CSP) implemented which could allow certain types of attacks that otherwise would be prevented.

EPSS

Процентиль: 51%

0.00277

Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-358