CVE-2022-38732

Summary

SnapCenter versions prior to 4.7 shipped without Content Security Policy (CSP) implemented which could allow certain types of attacks that otherwise would be prevented.

Affected Software

VendorProductVersion RangeStatus
n/aSnapCenterprior to 4.7affected

Weaknesses

  • Missing Content Security Policy

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References