CNNVD-202509-3098 Information

CNNVD ID

CNNVD-202509-3098

Related CVE

CVE-2025-26514

• CNNVD Published: 2025-09-19

Description (Chinese)

NetApp StorageGRID是美国网络器械（NetApp）公司的一套对象存储解决方案。 NetApp StorageGRID 11.8.0.15之前版本和11.9.0.8之前版本存在安全漏洞，该漏洞源于容易受到反射型跨站脚本攻击，可能导致查看或修改配置设置或用户账户。

Description (English)

NetApp StorageGRID is an object storage solution for NetApp. NetApp StorageGRID 11.8.15 and 11.9.0.8 have a security loophole, which arises from the vulnerability of reflective cross-site script attacks, which may lead to viewing or modifying configuration settings or user accounts.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

网络器械

Published

2025-09-19

Last Modified

2026-02-24

References

https://security.netapp.com/advisory/NTAP-20250910-0001 https://access.redhat.com/security/cve/cve-2025-26514

Patch

https://security.netapp.com/advisory/NTAP-20250910-0001