High severity8.8NVD Advisory· Published Nov 16, 2017· Updated May 13, 2026

CVE-2017-15516

Description

NetApp SnapCenter Server versions 1.1 through 2.x are susceptible to a Cross-Site Request Forgery (CSRF) vulnerability which could be used to cause an unintended authenticated action in the user interface.

Affected products

NetApp/Snapcenter Server2 versions
cpe:2.3:a:netapp:snapcenter_server:1.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:netapp:snapcenter_server:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:netapp:snapcenter_server:2.0:*:*:*:*:*:*:*
NetApp/SnapCenter Serverv5
Range: Versions 1.1 through 2.x

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.netapp.com/advisory/ntap-20171114-0001/nvdPatchVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000