CVE-2022-23240
First published: Tue Feb 28 2023(Updated: )
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions prior to 9.11P1 are susceptible to a vulnerability which allows unauthorized users to update EMS Subscriptions via unspecified vectors.
Credit: security-alert@netapp.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Netapp Active Iq Unified Manager Linux | <9.11p1 | |
| Netapp Active Iq Unified Manager Vmware Vsphere | <9.11p1 | |
| Netapp Active Iq Unified Manager Windows | <9.11p1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2022-23240.
Which software versions are affected by the vulnerability?
Active IQ Unified Manager for VMware vSphere, Linux, and Microsoft Windows versions prior to 9.11P1 are affected.
What is the severity of the vulnerability?
The severity of CVE-2022-23240 is medium with a severity value of 6.5.
How can unauthorized users exploit this vulnerability?
Unauthorized users can exploit this vulnerability to update EMS Subscriptions via unspecified vectors.
Is there a fix available for this vulnerability?
Yes, the fix for CVE-2022-23240 is available. Please refer to the vendor's advisory for more information.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/references
- agent/remedy
- agent/author
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/netapp
- canonical/netapp active iq unified manager linux
- canonical/netapp active iq unified manager vmware vsphere
- canonical/netapp active iq unified manager windows