Critical severity9.8NVD Advisory· Published Jun 13, 2018· Updated Jun 17, 2026
CVE-2018-5488
CVE-2018-5488
Description
NetApp SANtricity Web Services Proxy versions 1.10.x000.0002 through 2.12.X000.0002 and SANtricity Storage Manager 11.30.0X00.0004 through 11.42.0X00.0001 ship with the Java Management Extension Remote Method Invocation (JMX RMI) service bound to the network, and are susceptible to unauthenticated remote code execution.
Affected products
3- Range: >= 1.10.x000.0002 <= 2.12.x000.0002
- Range: >= 11.30.0X00.0004 <= 11.42.0X00.0001
- NetApp/SANtricity Productsv5Range: SANtricity Web Services Proxy versions 1.10.x000.0002 through 2.12.X000.0002 and SANtricity Storage Manager 11.30.0X00.0004 through 11.42.0X00.0001
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/104462nvdThird Party AdvisoryVDB Entry
- security.netapp.com/advisory/ntap-20180612-0001/nvdVendor Advisory
News mentions
0No linked articles in our index yet.