Netapp · Snapcenter Plugin For Vmware Vsphere · CVE-2023-27312
**Name of the Vulnerable Software and Affected Versions**
SnapCenter Plugin for VMware vSphere versions 4.6 through 4.8
**Description**
The issue is related to insufficient access control in the SnapCenter Plugin for VMware vSphere, which may allow authenticated unprivileged users to modify email and snapshot name settings within the VMware vSphere user interface.
**Recommendations**
For versions 4.6 through 4.8, update to version 4.9 or later to resolve the issue.
As a temporary workaround, consider restricting access to the email and snapshot name settings within the VMware vSphere user interface until a patch is available.