CVE-2026-5450 GNU C Library (glibc) Vulnerability in NetApp Products
Summary
Multiple NetApp products incorporate GNU C Library (glibc). Glibc versions 2.7 through 2.43 are susceptible to a vulnerability which when successfully exploited could lead to addition or modification of data or Denial of Service (DoS). Affected products: Active IQ Unified Manager for VMware vSphere, NetApp HCI Baseboard Management Controller (BMC) - H610S. NetApp reports that one or more additional products remain under investigation; review the canonical advisory for current status. NetApp states there is no workaround available at this time.
What this means
In plain English
Multiple NetApp products incorporate GNU C Library (glibc). Glibc versions 2.7 through 2.43 are susceptible to a vulnerability which when successfully exploited could lead to addition or modification of data or Denial of Service (DoS). Affected products: Active IQ Unified Manager for VMware vSphere, NetApp HCI Baseboard Management Controller (BMC) - H610S. NetApp reports that one or more additional products remain under investigation; review the canonical advisory for current status. NetApp states there is no workaround available at this time. Successful exploitation can interrupt the affected service or exhaust resources, reducing availability until the component recovers.
Vulnerable items
- Active IQ Unified Manager for VMware vSphere — Active IQ Unified Manager for VMware vSphere is a NetApp management component used to administer connected systems or services.
- NetApp HCI Baseboard Management Controller (BMC) - H610S — NetApp HCI Baseboard Management Controller (BMC) - H610S is a NetApp management component used to administer connected systems or services.
Recommended action
Vendor mitigation: NetApp HCI Baseboard Management Controller (BMC) - H610S has no planned fix; migrate to a supported release or product and consult NetApp's end-of-support notice. No fixed release is recorded in the parsed advisory, so treat these controls as temporary until the vendor confirms a patched release.
Rewritten locally from the scraped official advisory data above; no generative API is used. The vendor advisory is authoritative.
- 2.43
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
Fixed versions
No fixed release is recorded yet. That does not prove no patch exists — confirm against the vendor advisory.
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
Mitigation checklist
- NetApp HCI Baseboard Management Controller (BMC) - H610S has no planned fix; migrate to a supported release or product and consult NetApp's end-of-support notice.
Official advisory · high-confidence parse· fetched 3 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.