SnapCenter versions prior to 4.7 shipped without Content Security Policy (CSP) implemented which could allow certain types of attacks that otherwise would be prevented.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 20 May 2025 18:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-358
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: netapp

Published:

Updated: 2025-05-20T17:54:33.941Z

Reserved: 2022-08-24T00:00:00.000Z

Link: CVE-2022-38732

cve-icon Vulnrichment

Updated: 2024-08-03T11:02:14.555Z

cve-icon NVD

Status : Modified

Published: 2022-09-29T15:15:09.720

Modified: 2025-05-20T18:15:43.333

Link: CVE-2022-38732

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.