CVE-2024-22216
First published: Mon Jan 08 2024(Updated: )
In default installations of Microchip maxView Storage Manager (for Adaptec Smart Storage Controllers) where Redfish server is configured for remote system management, unauthorized access can occur, with data modification and information disclosure. This affects 3.00.23484 through 4.14.00.26064 (except for the patched versions 3.07.23980 and 4.07.00.25339).
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microchip Maxview Storage Manager | >=3.00.23484<=4.14.00.26064 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-22216?
The severity of CVE-2024-22216 is classified as high due to unauthorized access risks.
How do I fix CVE-2024-22216?
To fix CVE-2024-22216, update Microchip maxView Storage Manager to the latest version beyond 4.14.00.26064.
Who is affected by CVE-2024-22216?
CVE-2024-22216 affects users of Microchip maxView Storage Manager versions from 3.00.23484 to 4.14.00.26064.
What kind of vulnerabilities are associated with CVE-2024-22216?
CVE-2024-22216 is associated with unauthorized access, data modification, and information disclosure vulnerabilities.
Is there a workaround for CVE-2024-22216?
Currently, there are no documented workarounds for CVE-2024-22216 apart from upgrading to a secure version.
- agent/type
- agent/first-publish-date
- agent/author
- agent/references
- agent/event
- agent/softwarecombine
- agent/description
- agent/tags
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/severity
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- vendor/microchip
- canonical/microchip maxview storage manager
- version/microchip maxview storage manager/3.00.23484
- version/microchip maxview storage manager/4.14.00.26064