CVE-2019-5490
21.03.2019, 19:29
Certain versions between 2.x to 5.x (refer to advisory) of the NetApp Service Processor firmware were shipped with a default account enabled that could allow unauthorized arbitrary command execution. Any platform listed in the advisory Impact section may be affected and should be upgraded to a fixed version of Service Processor firmware IMMEDIATELY.Enginsight
| Vendor | Product | Version |
|---|---|---|
| netapp | service_processor | 2.8 |
| netapp | service_processor | 3.7 |
| netapp | service_processor | 4.5 |
| netapp | service_processor | 5.5 |
| netapp | service_processor | 2.8 |
| netapp | service_processor | 3.7 |
| netapp | service_processor | 4.5 |
| netapp | service_processor | 5.5 |
| netapp | service_processor | 2.8 |
| netapp | service_processor | 3.7 |
| netapp | service_processor | 4.5 |
| netapp | service_processor | 5.5 |
| netapp | service_processor | 2.5 |
| netapp | service_processor | 3.4 |
| netapp | service_processor | 3.4:patch1 |
| netapp | service_processor | 3.4:patch2 |
| netapp | service_processor | 4.2 |
| netapp | service_processor | 4.2:patch1 |
| netapp | service_processor | 4.2:patch2 |
| netapp | service_processor | 5.2 |
| netapp | service_processor | 5.2:patch1 |
| netapp | service_processor | 2.4.1 |
| netapp | service_processor | 2.4.1:patch1 |
| netapp | service_processor | 3.3 |
| netapp | service_processor | 3.3:patch1 |
| netapp | service_processor | 3.3:patch2 |
| netapp | service_processor | 3.3:patch3 |
| netapp | service_processor | 3.3:patch4 |
| netapp | service_processor | 4.1 |
| netapp | service_processor | 4.1:patch1 |
| netapp | service_processor | 4.1:patch2 |
| netapp | service_processor | 4.1:patch3 |
| netapp | service_processor | 4.1:patch4 |
| netapp | service_processor | 4.1:patch5 |
| netapp | service_processor | 4.1:patch6 |
| netapp | service_processor | 5.1 |
| netapp | service_processor | 5.1:patch1 |
| netapp | service_processor | 5.1:patch2 |
| netapp | service_processor | 5.1:patch3 |
| netapp | service_processor | 2.4 |
| netapp | service_processor | 3.2 |
| netapp | service_processor | 2.3.2 |
| netapp | service_processor | 2.3.2:patch1 |
| netapp | service_processor | 2.3.2:patch2 |
| netapp | service_processor | 2.3.2:patch3 |
| netapp | service_processor | 3.1.2 |
| netapp | service_processor | 3.1.2:patch1 |
| netapp | service_processor | 3.1.2:patch2 |
| netapp | service_processor | 2.2.5 |
| netapp | service_processor | 3.0.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration