CVE-2019-5490
N/A
N/A
Summary
Certain versions between 2.x to 5.x (refer to advisory) of the NetApp Service Processor firmware were shipped with a default account enabled that could allow unauthorized arbitrary command execution. Any platform listed in the advisory Impact section may be affected and should be upgraded to a fixed version of Service Processor firmware IMMEDIATELY.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NetApp, Inc. | NetApp Service Processor | 2.x-5.x - refer to advisory | affected |
Weaknesses
- Default Configureation
ADP Enrichment
CVE Program Container
Additional References
- https://security.netapp.com/advisory/ntap-20190305-0001/
- http://support.lenovo.com/us/en/solutions/LEN-26771
References
- https://security.netapp.com/advisory/ntap-20190305-0001/
- http://support.lenovo.com/us/en/solutions/LEN-26771
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.