{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-11T05:13:34.722","vulnerabilities":[{"cve":{"id":"CVE-2021-26999","sourceIdentifier":"security-alert@netapp.com","published":"2021-08-06T15:15:08.743","lastModified":"2024-11-21T05:57:10.210","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"NetApp Cloud Manager versions prior to 3.9.9 log sensitive information when an Active Directory connection fails. The logged information is available only to authenticated users. Customers with auto-upgrade enabled should already be on a fixed version while customers using on-prem connectors with auto-upgrade disabled are advised to upgrade to a fixed version."},{"lang":"es","value":"NetApp Cloud Manager versiones anteriores a 3.9.9, registran información confidencial cuando comete un fallo una conexión Active Directory. La información registrada sólo está disponible para usuarios autenticados. Los clientes con la actualización automática habilitada deberían estar ya en una versión corregida, mientras que a los clientes que usan conectores locales con la actualización automática deshabilitada se les aconseja que actualicen a una versión corregida"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N","baseScore":4.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":1.4}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-532"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:netapp:cloud_manager:*:*:*:*:*:*:*:*","versionEndExcluding":"3.9.9","matchCriteriaId":"06657BD9-6243-49A4-9E8E-66A189E103D8"}]}]}],"references":[{"url":"https://security.netapp.com/advisory/NTAP-20210805-0012","source":"security-alert@netapp.com","tags":["Vendor Advisory"]},{"url":"https://security.netapp.com/advisory/NTAP-20210805-0012","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}