CVE-2023-27316

Name of the Vulnerable Software and Affected Versions SnapCenter versions 4.8 through 4.9

Description The issue allows an authenticated SnapCenter Server user to potentially become an admin user on a remote system where a SnapCenter plug-in has been installed.

Recommendations For SnapCenter versions 4.8 through 4.9, consider restricting access to the SnapCenter plug-in on remote systems until a patch is available. As a temporary workaround, limit the privileges of authenticated SnapCenter Server users to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.