CVE-2024-21990

Summary

ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x contain hard-coded credentials that could allow an attacker to view Deploy configuration information and modify the account credentials.

Affected Software

VendorProductVersion RangeStatus
NetAppONTAP Select Deploy administration utility9.12.1 <= 9.14.1P2affected

Weaknesses

  • CWE-259: CWE-259

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References