Vulnerabilities > CVE-2022-23238 - Unspecified vulnerability in Netapp Storagegrid 11.6.0

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

netapp

NVD

Published: 2022-08-10

Updated: 2022-08-15

Summary

Linux deployments of StorageGRID (formerly StorageGRID Webscale) versions 11.6.0 through 11.6.0.2 deployed with a Linux kernel version less than 4.7.0 are susceptible to a vulnerability which could allow a remote unauthenticated attacker to view limited metrics information and modify alert email recipients and content.

Vulnerable Configurations

Part	Description	Count
Application	Netapp Netapp Storagegrid 11.6.0	1
OS	Canonical Canonical Ubuntu Linux 16.04	1
OS	Centos Centos Centos 7.9	1
OS	Linux Linux Linux Kernel *	1
OS	Redhat Redhat Enterprise Linux Server 7.9	1

References

https://security.netapp.com/advisory/NTAP-20220808-0001/