Vulnerability in Netapp Active Iq Config Advisor

CVE-2026-22054

Active IQ Config Advisor version 6.7.3 contains hard-coded credentials that could allow an authenticated attacker with low privileges to perform unauthorized AutoSupport operations.

EPSS: 0.000 (13.0th percentile) — read the EPSS interpretation.

Affected products

Netapp Active Iq Config Advisor — versions 6.7.3

Weakness classification (CWE)

CWE-259 — Use of Hard-coded Password

References

security-alert@netapp.com (vendor-advisory)