April 2026 MySQL Server 8.0.0, 8.4.0 and 9.0.0 Vulnerabilities in NetApp Products
Summary
Multiple NetApp products incorporate MySQL. MySQL versions 8.0.0 through 8.0.45, 8.4.0 through 8.4.8, and 9.0.0 through 9.6.0 are susceptible to a vulnerability that could allow unauthenticated attacker with logon to the infrastructure, unauthorized creation, deletion or modification access to critical data or complete access to all MySQL Server accessible data, unauthenticated attacker or low or high privileged attacker with network access via multiple protocols to compromise MySQL Server. Refer to “Oracle Critical Patch Update Advisory - April 2026” for additional details. OR Multiple NetApp products incorporate MySQL. MySQL versions 8.0.0 through 8.0.45, 8.4.0 through 8.4.8, and 9.0.0 through 9.6.0 are susceptible to a vulnerability that could allow an attacker to create, delete, or modify critical data, or potentially gain full access to all data accessible by the MySQL Server. Refer to “Oracle Critical Patch Update Advisory - April 2026” for additional details. Successful attacks of this vulnerability can result in takeover, unauthorized read access to a subset of MySQL Server accessible data, and cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. <br><br> Active IQ Unified Manager for Microsoft Windows: <br> Not affected by CVE-2026-34276 or CVE-2026-34271. <br> Active IQ Unified Manager for VMware vSphere: <br> Not affected by CVE-2026-34270, CVE-2026-34276, CVE-2025-14017 or CVE-2026-34271. <br> SnapCenter: <br> Not affected by CVE-2025-15467. Affected products: Active IQ Unified Manager for Microsoft Windows, Active IQ Unified Manager for VMware vSphere, OnCommand Insight, SnapCenter.
- 8.0.0
- 8.0.45
- 8.4.0
- 8.4.8
- 9.0.0
- 9.6.0
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
- SnapCenter: 6.2.2
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
Mitigation checklist
- Update affected NetApp products to a fixed release: SnapCenter: 6.2.2.
- Full Support versions of SnapCenter Server allow MySQL software to be upgraded within documented constraints. Consult the product documentation for supported MySQL versions and other information related to the upgrade. <br><br> In Full Support versions of OnCommand Insight the MySQL software can be upgraded after acquiring updated OnCommand Insight binaries via technical support.
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.