October 2025 Java Platform Standard Edition Vulnerabilities in NetApp Products
Summary
Multiple NetApp products incorporate Oracle Java Platform, Standard Edition (Java SE). Java SE versions 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, and 25 are susceptible to vulnerabilities that when successfully exploited could allow unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE. Refer to “Oracle Critical Patch Update Advisory - October 2025” for additional details. Successful attacks of these vulnerabilities can result in unauthorized creation, deletion, modification, or access to critical data or complete access to all Oracle Java SE accessible data. Affected products: Active IQ Unified Manager for VMware vSphere, Brocade SAN Navigator (SANnav), E-Series SANtricity Unified Manager and Web Services Proxy, OnCommand Insight, SANtricity Storage Plugin for vCenter. NetApp reports that one or more additional products remain under investigation; review the canonical advisory for current status. NetApp states there is no workaround available at this time.
- Brocade SAN Navigator (SANnav): 2.4.0b
- Brocade SAN Navigator (SANnav): 3.0.1
- Brocade SAN Navigator (SANnav): 3.1.0
- E-Series SANtricity Unified Manager and Web Services Proxy: 8.0
- SANtricity Storage Plugin for vCenter: 12.00
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
Mitigation checklist
- Update affected NetApp products to a fixed release: Brocade SAN Navigator (SANnav): 2.4.0b, Brocade SAN Navigator (SANnav): 3.0.1, Brocade SAN Navigator (SANnav): 3.1.0, E-Series SANtricity Unified Manager and Web Services Proxy: 8.0, SANtricity Storage Plugin for vCenter: 12.00.
- Brocade SAN Navigator (SANnav): Fixed in SANnav 2.4.0b, SANnav 3.0.1 and SANnav 3.1.0.
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.