{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-28T16:33:18.795","vulnerabilities":[{"cve":{"id":"CVE-2019-17274","sourceIdentifier":"security-alert@netapp.com","published":"2020-02-26T18:15:11.030","lastModified":"2024-11-21T04:32:00.540","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"NetApp FAS 8300/8700 and AFF A400 Baseboard Management Controller (BMC) firmware versions 13.x prior to 13.1P1 were shipped with a default account enabled that could allow unauthorized arbitrary command execution via local access."},{"lang":"es","value":"NetApp FAS 8300/8700 y AFF A400 Baseboard Management Controller (BMC) versiones de firmware 13.x anteriores a 13.1P1, fueron enviadas con una cuenta predeterminada habilitada que podría permitir una ejecución de comandos arbitrarios no autorizada por medio de un acceso local."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:C/I:C/A:C","baseScore":7.2,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":3.9,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-1188"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:fabric-attached_storage_8700_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"13.1","matchCriteriaId":"66649BB0-329B-4C1C-BCAD-2285275433BB"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:fabric-attached_storage_8700:-:*:*:*:*:*:*:*","matchCriteriaId":"DF9B5939-68D6-47E1-AFCA-F709F46136C6"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:fabric-attached_storage_8300_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"13.1","matchCriteriaId":"68A5ACAE-B921-4804-9828-38BA92394C74"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:fabric-attached_storage_8300:-:*:*:*:*:*:*:*","matchCriteriaId":"43E89C80-A70B-48A3-A076-D9F031C25D1C"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:netapp:all_flash_fabric-attached_storage_a400_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"13.1","matchCriteriaId":"6AB5F3D3-2D4D-47C6-AC8C-1B8C42A49C59"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:netapp:all_flash_fabric-attached_storage_a400:-:*:*:*:*:*:*:*","matchCriteriaId":"2527D2C3-EDA7-4B8A-82AB-A4F20C731E2D"}]}]}],"references":[{"url":"https://security.netapp.com/advisory/ntap-20200226-0001/","source":"security-alert@netapp.com","tags":["Vendor Advisory"]},{"url":"https://security.netapp.com/advisory/ntap-20200226-0001/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}