{"id":1598998,"date":"2025-03-28T01:13:00","date_gmt":"2025-03-28T03:13:00","guid":{"rendered":"https:\/\/teknomers.com\/fr\/netapp-snapcenter-flaw-pourrait-permettre-aux-utilisateurs-dacceder-a-un-administrateur-a-distance-sur-les-systemes-de-plug-in\/"},"modified":"2025-03-28T01:13:05","modified_gmt":"2025-03-28T03:13:05","slug":"netapp-snapcenter-flaw-pourrait-permettre-aux-utilisateurs-dacceder-a-un-administrateur-a-distance-sur-les-systemes-de-plug-in","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/netapp-snapcenter-flaw-pourrait-permettre-aux-utilisateurs-dacceder-a-un-administrateur-a-distance-sur-les-systemes-de-plug-in\/","title":{"rendered":"NetApp Snapcenter Flaw pourrait permettre aux utilisateurs d&#8217;acc\u00e9der \u00e0 un administrateur \u00e0 distance sur les syst\u00e8mes de plug-in"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">27 mars 2025<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">Ravie Lakshmanan<\/span><\/span><span class=\"p-tags\">Vuln\u00e9rabilit\u00e9 \/ s\u00e9curit\u00e9 d&#8217;entreprise<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><a rel=\"nofollow\" href=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2025\/03\/NetApp-Snapcenter-Flaw-pourrait-permettre-aux-utilisateurs-dacceder-a-un.png\" style=\"clear: left; display: block; float: left;  text-align: center;\"><\/a><\/div>\n<p>Une faille de s\u00e9curit\u00e9 critique a \u00e9t\u00e9 divulgu\u00e9e dans NetApp Snapcenter qui, si elle est exploit\u00e9e avec succ\u00e8s, pourrait permettre une escalade des privil\u00e8ges.<\/p>\n<p>SnapCenter est un <a rel=\"noopener nofollow\" href=\"https:\/\/docs.netapp.com\/us-en\/snapcenter\/concept\/concept_snapcenter_overview.html\" target=\"_blank\">logiciel ax\u00e9 sur l&#8217;entreprise<\/a> Cela est utilis\u00e9 pour g\u00e9rer la protection des donn\u00e9es entre les applications, les bases de donn\u00e9es, les machines virtuelles et les syst\u00e8mes de fichiers, offrant la possibilit\u00e9 de sauvegarder, de restaurer et de cloner les ressources de donn\u00e9es.<\/p>\n<div class=\"dog_two clear\"><center class=\"cf\"><a rel=\"nofollow noopener sponsored\" href=\"https:\/\/thehackernews.uk\/cis-securesuite\" target=\"_blank\" title=\"Cybersecurity\"><img loading=\"lazy\" decoding=\"async\" class=\"lazyload\" alt=\"Cybers\u00e9curit\u00e9\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2025\/03\/1740818990_705_Mozilla-met-a-jour-les-termes-de-Firefox-apres-le.png\" width=\"727\" height=\"90\"\/><\/a><\/center><\/div>\n<p>La vuln\u00e9rabilit\u00e9, suivie comme <strong>CVE-2025-26512<\/strong>porte un score CVSS de 9,9 sur un maximum de 10,0.<\/p>\n<p>&#8220;Les versions SnapCenter avant 6.0.1p1 et 6.1p1 sont sensibles \u00e0 une vuln\u00e9rabilit\u00e9 qui peut permettre \u00e0 un utilisateur authentifi\u00e9 de serveur SnapCenter de devenir un utilisateur d&#8217;administrateur sur un syst\u00e8me distant o\u00f9 un plug-in Snapcenter a \u00e9t\u00e9 install\u00e9&#8221;, la soci\u00e9t\u00e9 d&#8217;infrastructure de donn\u00e9es <a rel=\"noopener nofollow\" href=\"https:\/\/security.netapp.com\/advisory\/ntap-20250324-0001\/\" target=\"_blank\">dit<\/a> Dans un avis publi\u00e9 cette semaine.<\/p>\n<p>CVE-2025-26512 a \u00e9t\u00e9 abord\u00e9 dans les versions SnapCenter 6.0.1p1 et 6.1p1. Il n&#8217;y a actuellement aucune solution de contournement qui r\u00e9sout le probl\u00e8me. <\/p>\n<p>Bien qu&#8217;il n&#8217;y ait aucune preuve que la lacune a \u00e9t\u00e9 exploit\u00e9e dans la nature, il est essentiel que les organisations appliquent les derni\u00e8res mises \u00e0 jour pour sauvegarder contre les menaces potentielles.<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant? Suivez-nous <a rel=\"noopener nofollow\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Gazouillement <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"noopener nofollow\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">Liendin<\/a> Pour lire plus de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2025\/03\/netapp-snapcenter-flaw-could-let-users.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80227 mars 2025\ue804Ravie LakshmananVuln\u00e9rabilit\u00e9 \/ s\u00e9curit\u00e9 d&#8217;entreprise Une faille de s\u00e9curit\u00e9 critique a \u00e9t\u00e9 divulgu\u00e9e dans NetApp Snapcenter qui, si elle est exploit\u00e9e avec succ\u00e8s, pourrait permettre une escalade des privil\u00e8ges. SnapCenter est un logiciel ax\u00e9 sur l&#8217;entreprise Cela est utilis\u00e9 pour g\u00e9rer la protection des donn\u00e9es entre les applications, les bases de donn\u00e9es, les [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1598999,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[274266,274265,32959,507,4168,79002,274264,4161,274263,6124,8464,2526,53445,65,274267,4160,290352,5848,51599,2102,238617,246491,4172,290353,60,5046,79016,7529,4166,4164],"class_list":["post-1598998","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-actualites-de-piratage","tag-actualites-des-pirates","tag-administrateur","tag-aux","tag-comment-pirater","tag-cyber-security-news","tag-cyber-security-news-aujourdhui","tag-cyber-mises-a-jour","tag-cyber-nouvelles","tag-cyberattaques","tag-dacceder","tag-distance","tag-flaw","tag-les","tag-malware-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-netapp","tag-permettre","tag-plugin","tag-pourrait","tag-securite-de-linformation","tag-securite-du-reseau","tag-securite-informatique","tag-snapcenter","tag-sur","tag-systemes","tag-the-hacker-news","tag-utilisateurs","tag-violation-de-donnees","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1598998","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=1598998"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/1598998\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/1598999"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=1598998"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=1598998"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=1598998"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}