NTAP-20240315-0009: SnakeYAML 1.32 Vulnerabilities in NetApp Products

Netapp Security Advisory

CVEs: CVE-2022-38752, CVE-2022-41854

Summary

Multiple NetApp products incorporate SnakeYAML. SnakeYAML versions prior to 1.32 are susceptible to a vulnerability which when successfully exploited could lead to Denial of Service (DoS).<

READ MORE