CVE-2022-23238

2022-08-0920:18:39

netapp

www.cve.org

linux

storagegrid

vulnerability

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

48.1%

JSON

Linux deployments of StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.2 deployed with a Linux kernel version less than 4.7.0 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to view limited metrics information and modify alert email recipients and content.

CNA Affected

[
  {
    "product": "StorageGRID (formerly StorageGRID Webscale)",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "11.6.0 through 11.6.0.2"
      }
    ]
  }
]

References

security.netapp.com/advisory/NTAP-20220808-0001/