CVE-2016-5372

MEDIUM

NetApp Snap Creator Framework < 4.3.0P1 - Cross-Site Request Forgery

Title source: llm
STIX 2.1

Description

Cross-site request forgery (CSRF) vulnerability in NetApp Snap Creator Framework before 4.3.0P1 allows remote attackers to hijack the authentication of users for requests that have unspecified impact via unknown vectors.

Scores

CVSS v3 6.3
EPSS 0.0053
EPSS Percentile 41.1%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Details

CWE
CWE-352
Status published
Products (1)
netapp/snap_creator_framework < 4.3.0
Published Feb 07, 2017
Tracked Since Feb 18, 2026