CVE-2023-27313

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 12, 2023

Updated: Oct 18, 2023

CWE ID 250

Summary

CVE-2023-27313 is a vulnerability affecting SnapCenter versions 3.x and 4.x before 4.9. This issue grants an authenticated unprivileged user elevated admin access, posing a significant security risk. The precise method of exploitation involves taking advantage of a vulnerability within the software, allowing the unprivileged user to gain admin privileges. It is urged that affected organizations apply the necessary patches to mitigate this risk and secure their systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

NetApp SnapCenter

Affected Vendors

NetApp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sCG--T
https://www.cve.org/CVERecord?id=CVE-2023-27313
https://nvd.nist.gov/vuln/detail/CVE-2023-27313

Back to Vulnerability Database