← back
CVE-2021-26987

CVE-2021-26987

EPSS 2.4%
Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework versions prior to 1.3.2 are susceptible to a vulnerability which when successfully exploited could lead to Remote Code Execution. All versions of Element Plug-in for vCenter Server, Management Services versions prior to 2.17.56 and Management Node versions through 12.2 contain vulnerable versions of SpringBoot Framework.
Affected products
n/a · Element Plug-in for vCenter Servern/a · Management Services for Element Software and NetApp HCIn/a · NetApp SolidFire & HCI Management Node

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://security.netapp.com/advisory/ntap-20210315-0001/