CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15515

NetApp SnapCenter Server prior to 4.0 is susceptible to cross site scripting vulnerability that could allow a privileged user to inject arbitrary scripts into the custom secondary policy label field.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.5%

CVSS Severity

CVSS v3 Score 4.8

CVSS v2 Score 3.5

References

Products affected by CVE-2017-15515

Netapp » Snapcenter Server » Version: N/A

cpe:2.3:a:netapp:snapcenter_server:-
Netapp » Snapcenter Server » Version: 1.0

cpe:2.3:a:netapp:snapcenter_server:1.0
Netapp » Snapcenter Server » Version: 1.0.1

cpe:2.3:a:netapp:snapcenter_server:1.0.1
Netapp » Snapcenter Server » Version: 1.1

cpe:2.3:a:netapp:snapcenter_server:1.1
Netapp » Snapcenter Server » Version: 2.0

cpe:2.3:a:netapp:snapcenter_server:2.0
Netapp » Snapcenter Server » Version: 3.0

cpe:2.3:a:netapp:snapcenter_server:3.0
Netapp » Snapcenter Server » Version: 3.0.1

cpe:2.3:a:netapp:snapcenter_server:3.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15515

Products

Pricing

Contact Us