CVE-2024-2660 HashiCorp Vault Vulnerability in NetApp Products Advisory Information Advisory ID: NTAP-20240524-0007 Version: 1.0 Last Updated: 05/24/2024 Status: Interim CVEs: CVE-2024-2660 Summary Multiple NetApp products incorporate HashiCorp Vault Enterprise. HashiCorp Vault and Vault Enterprise versions prior to 1.16.1, 1.15.7, and 1.14.11 are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information, addition or modification of data, or Denial of Service (DoS). Impact Successful exploitation of this vulnerability could lead to disclosure of sensitive information, addition or modification of data, or Denial of Service (DoS). Vulnerability Scoring Details CVE: CVE-2024-2660 CVSS Score: [Score Not Visible] Vector: [Vector Not Visible] Exploitation and Public Disclosure NetApp is aware of public discussion of the vulnerability. References NetApp will continue to review and add additional references as necessary.