PT-2022-15914 · Netapp · Santricity Os Controller
Published
2022-06-01
·
Updated
2022-06-11
·
CVE-2022-23237
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
E-Series SANtricity OS Controller Software versions 11.x through 11.70.2
Description
The issue allows an attacker to perform host header injection attacks, potentially redirecting users to malicious websites.
Recommendations
For versions 11.x through 11.70.2, update to a version that is not affected by this issue to prevent host header injection attacks.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Open Redirect
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Santricity Os Controller