Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework versions prior to 1.3.2 are susceptible to a vulnerability which when successfully exploited could lead to Remote Code Execution. All versions of Element Plug-in for vCenter Server, Management Services versions prior to 2.17.56 and Management Node versions through 12.2 contain vulnerable versions of SpringBoot Framework.
[
{
"product": "Element Plug-in for vCenter Server",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "Management Services for Element Software and NetApp HCI",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "versions prior to 2.17.56"
}
]
},
{
"product": "NetApp SolidFire & HCI Management Node",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "versions through 12.2"
}
]
}
]