Vulnerability Details CVE-2024-21984
StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8
are susceptible to a difficult to exploit Reflected Cross-Site Scripting
(XSS) vulnerability. Successful exploit requires the attacker to know
specific information about the target instance and trick a privileged
user into clicking a specially crafted link. This could allow the
attacker to view or modify configuration settings or add or modify user
accounts.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 43.8%
CVSS Severity
CVSS v3 Score 5.9
References
Products affected by CVE-2024-21984
-
cpe:2.3:a:netapp:storagegrid:-
-
cpe:2.3:a:netapp:storagegrid:10.0.0
-
cpe:2.3:a:netapp:storagegrid:11.1.1.10
-
cpe:2.3:a:netapp:storagegrid:11.1.1.11
-
cpe:2.3:a:netapp:storagegrid:11.2
-
cpe:2.3:a:netapp:storagegrid:11.2.0.5
-
cpe:2.3:a:netapp:storagegrid:11.2.0.6
-
cpe:2.3:a:netapp:storagegrid:11.2.0.7
-
cpe:2.3:a:netapp:storagegrid:11.2.0.8
-
cpe:2.3:a:netapp:storagegrid:11.3
-
cpe:2.3:a:netapp:storagegrid:11.3.0.1
-
cpe:2.3:a:netapp:storagegrid:11.3.0.10
-
cpe:2.3:a:netapp:storagegrid:11.3.0.11
-
cpe:2.3:a:netapp:storagegrid:11.3.0.12
-
cpe:2.3:a:netapp:storagegrid:11.3.0.3
-
cpe:2.3:a:netapp:storagegrid:11.3.0.4
-
cpe:2.3:a:netapp:storagegrid:11.3.0.5
-
cpe:2.3:a:netapp:storagegrid:11.3.0.6
-
cpe:2.3:a:netapp:storagegrid:11.3.0.8
-
cpe:2.3:a:netapp:storagegrid:11.4.0
-
cpe:2.3:a:netapp:storagegrid:11.4.0.1
-
cpe:2.3:a:netapp:storagegrid:11.4.0.2
-
cpe:2.3:a:netapp:storagegrid:11.4.0.3
-
cpe:2.3:a:netapp:storagegrid:11.4.0.4
-
cpe:2.3:a:netapp:storagegrid:11.4.0.5
-
cpe:2.3:a:netapp:storagegrid:11.4.0.6
-
cpe:2.3:a:netapp:storagegrid:11.5.0
-
cpe:2.3:a:netapp:storagegrid:11.5.0.1
-
cpe:2.3:a:netapp:storagegrid:11.5.0.2
-
cpe:2.3:a:netapp:storagegrid:11.5.0.3
-
cpe:2.3:a:netapp:storagegrid:11.5.0.4
-
cpe:2.3:a:netapp:storagegrid:11.5.0.5
-
cpe:2.3:a:netapp:storagegrid:11.6.0
-
cpe:2.3:a:netapp:storagegrid:11.6.0.13
-
cpe:2.3:a:netapp:storagegrid:11.7.0
-
cpe:2.3:a:netapp:storagegrid:11.7.0.3
-
cpe:2.3:a:netapp:storagegrid:11.7.0.4
-
cpe:2.3:a:netapp:storagegrid:11.7.0.5
-
cpe:2.3:a:netapp:storagegrid:11.7.0.6
-
cpe:2.3:a:netapp:storagegrid:7.5.5
-
cpe:2.3:a:netapp:storagegrid:8.0.6
-
cpe:2.3:a:netapp:storagegrid:8.1.3
-
cpe:2.3:a:netapp:storagegrid:8.5.0
-
cpe:2.3:a:netapp:storagegrid:8.5.1
-
cpe:2.3:a:netapp:storagegrid:8.5.3
-
cpe:2.3:a:netapp:storagegrid:9.0.0
-
cpe:2.3:a:netapp:storagegrid:9.0.1
-
cpe:2.3:a:netapp:storagegrid:9.0.2
-
cpe:2.3:a:netapp:storagegrid:9.0.4