CVE-2023-43804 urllib3 Vulnerability in NetApp Products
Summary
Multiple NetApp products incorporate urllib3. Urllib3 versions prior to 1.26.17 and prior to 2.0.6 are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information or addition or modification of data. Successful exploitation of this vulnerability could lead to disclosure of sensitive information or addition or modification of data. Affected products: Active IQ Unified Manager for VMware vSphere, NetApp SolidFire & HCI Storage Node (Element Software), ONTAP Mediator. NetApp states there is no workaround available at this time.
- 1.26.17
- 2.0.6
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
- Active IQ Unified Manager for VMware vSphere: 9.18P2
- ONTAP Mediator: 1.8
- ONTAP Mediator: 1.9
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
Mitigation checklist
- Update affected NetApp products to a fixed release: Active IQ Unified Manager for VMware vSphere: 9.18P2, ONTAP Mediator: 1.8, ONTAP Mediator: 1.9.
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.