Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework versions prior to 1.3.2 are susceptible to a vulnerability which when successfully exploited could lead to Remote Code Execution. All versions of Element Plug-in for vCenter Server, Management Services versions prior to 2.17.56 and Management Node versions through 12.2 contain vulnerable versions of SpringBoot Framework.
References
Link | Resource |
---|---|
https://security.netapp.com/advisory/ntap-20210315-0001/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2021-03-15 22:15
Updated : 2024-02-28 18:08
NVD link : CVE-2021-26987
Mitre link : CVE-2021-26987
CVE.ORG link : CVE-2021-26987
JSON object : View
Products Affected
netapp
- element_plug-in_for_vcenter_server
- management_services_for_element_software_and_netapp_hci
- solidfire_\&_hci_management_node
vmware
- spring_boot
CWE