NetApp products identified with multiple vulnerabilities that could allow attackers to bypass security policy, according to a CERT‑FR advisory released on 4 June 2026. The advisory lists two CVEs, CVE‑2026‑22054 and CVE‑2026‑22055, and states that the issues affect Active IQ Config Advisor versions prior to 6.7.4 and Active IQ OneCollect versions prior to 2.7.4. The vulnerabilities were discovered by NetApp’s security team and could impact data integrity if exploited. It recommends applying patches from NetApp’s security bulletins NTAP‑20260603‑0001 and NTAP‑20260603‑0002, available on NetApp’s security website. Users should upgrade to at least version 6.7.4 of Config Advisor or 2.7.4 of OneCollect to mitigate the risk. The advisory cites NetApp bulletins dated 3 June 2026 and includes URLs to the CVE records for reference.
Summary of content from
Made by AI. If you spot anything of concern write us at contact@cybach.com. We’ll promptly correct irregularities.