CVE-2025-26517
published 2025-09-19CVE-2025-26517: StorageGRID (formerly StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are susceptible to a privilege escalation vulnerability. Successful…
medium5.4CVSS 3.1
AVNACLPRLUINSUCLILAN
StorageGRID (formerly
StorageGRID Webscale) versions prior to 11.8.0.15 and 11.9.0.8 are
susceptible to a privilege escalation vulnerability. Successful exploit
could allow an unauthorized authenticated attacker to discover Grid node
names and IP addresses or modify Storage Grades.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| netapp | storagegrid | < 11.9.0.8 | 11.9.0.8 |
| netapp | storagegrid | < 11.8.0.15 | 11.8.0.15 |
| netapp | storagegrid | >= 11.9.0 < 11.9.0.8 | 11.9.0.8 |