Vulnerability in Netapp 7-mode_transition_tool
CVE-2023-21968
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 8u361, 8u361-perf, 11.0.18, 17.0.6, 20; Oracle GraalVM Enter…
EPSS: 0.001 (22.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 3.7 (Low). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N.
Affected products
- Netapp 7-mode_transition_tool
- Netapp Brocade_san_navigator
- Netapp Cloud_insights_acquisition_unit
- Netapp Cloud_insights_storage_workload_security_agent
- Netapp Oncommand_insight
- Oracle Graalvm — versions 20.3.9, 21.3.5, 22.3.1
- Oracle Jdk — versions 1.8.0, 11.0.18, 17.0.6
- Oracle Jre — versions 1.8.0, 11.0.18, 17.0.6
- Oracle Openjdk — versions 8, 20
- Oracle Corporation Java Se Jdk And Jre — versions Oracle Java SE:8u361, Oracle Java SE:8u361-perf, Oracle Java SE:11.0.18
Weakness classification (CWE)
References
- secalert_us@oracle.com (vendor-advisory, Vendor Advisory)
- secalert_us@oracle.com (Third Party Advisory)
- secalert_us@oracle.com (Third Party Advisory)
- secalert_us@oracle.com (Third Party Advisory)
- secalert_us@oracle.com (Third Party Advisory)
- secalert_us@oracle.com (Mailing List, Third Party Advisory)
- secalert_us@oracle.com
Frequently asked questions
- What is CVE-2023-21968?
- CVE-2023-21968 is a low-severity vulnerability in Netapp 7-mode_transition_tool, classified under Improper Access Control. CVSS score: 3.7/10. Published 2023-04-18.
- How severe is CVE-2023-21968?
- Low severity. CVSS v3 base score is 3.7 out of 10.