Is it normal that vulnerability scans are showing the use of netexe on AIQUM
Applies to
NetApp Active IQ Unified Manager (AIQUM)
Answer
- Yes, the use of
net.exe
by AIQUM is a normal behaviour, as it is a Java-based application- AIQUM uses Java processes to execute system commands such as
net.exe
,net1.exe
,tasklist.exe
,NETSTAT.exe
, andipconfig.exe
- These commands are used to collect data about the system environment, which is necessary for AIQUM to function properly
- Security alerts seen via third party vulnerability scans regarding the use of
net.exe
are likely due to AIQUM's normal operations- Commands executed by AIQUM, such as
net localgroup users
, are part of its routine to gather system information- This can be verified by checking the AIQUM logs and documentation
- Commands executed by AIQUM, such as
- AIQUM uses Java processes to execute system commands such as