CVE-2025-26512 – NetApp SnapCenter Security Update
“A low-level SnapCenter account could escalate to administrator on managed systems, putting backups and critical servers at risk.”
CVE-2025-26512 is a critical privilege escalation vulnerability (CVSS 9.9) affecting NetApp SnapCenter. In vulnerable versions prior to 6.0.1P1 and 6.1P1, an authenticated SnapCenter user with limited permissions could exploit this flaw to gain administrative privileges on remote systems running SnapCenter plug-ins.
This means a standard SnapCenter account could be leveraged to take control of managed hosts. Successful exploitation could result in unauthorized access to sensitive data, tampering or deletion of backups, service disruption, or lateral movement across enterprise infrastructure. Because SnapCenter orchestrates protection for databases, applications, and virtual environments, compromise could directly impact recovery capabilities.
NetApp resolved this issue in SnapCenter versions 6.0.1P1, 6.1P1, and later.
Key Details
- Affected Product
- Netapp Snapcenter
- Attack Vector
- Network
- Attack Complexity
- Low
- Privileges Required
- Low
- User Interaction
- None
- CWE Classification
- CWE-266