CVE-2017-12422

EUVD-2017-3995
NetApp StorageGRID Webscale 10.2.x before 10.2.2.3, 10.3.x before 10.3.0.4, and 10.4.x before 10.4.0.2 allow remote authenticated users to delete arbitrary objects via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 63%
Affected Products (NVD)
VendorProductVersion
netappstoragegrid_webscale
10.2
netappstoragegrid_webscale
10.2.1
netappstoragegrid_webscale
10.2.2
netappstoragegrid_webscale
10.2.2.2
netappstoragegrid_webscale
10.3.0
netappstoragegrid_webscale
10.3.0.3
netappstoragegrid_webscale
10.4.0
netappstoragegrid_webscale
10.4.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/100535
https://kb.netapp.com/support/s/article/NTAP-20170825-0001
http://www.securityfocus.com/bid/100535
https://kb.netapp.com/support/s/article/NTAP-20170825-0001