CVE-2022-26872 | Severity.io

Description

AMI Megarac Password reset interception via API

Related CPE's

o

ami

megarac_sp-x

2

References

https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023001.pdf

Third Party Advisory

https://security.netapp.com/advisory/ntap-20230731-0008/

https://9443417.fs1.hubspotusercontent-na1.net/hubfs/9443417/Security%20Advisories/AMI-SA-2023001.pdf

Third Party Advisory

https://security.netapp.com/advisory/ntap-20230731-0008/

https://www.kb.cert.org/vuls/id/730007

Weaknesses

[email protected]

Secondary

CWE-640

[email protected]

Primary

CWE-640

CVSS impact metrics

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

8.3 · High

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-01-30T15:15:08.860Z

3 years ago

Last modified

2024-11-21T05:54:43.333Z

1 year ago