Security Scan Reports RabbitMQ Vulnerability on SnapCenter Servers (CVE-2025-50200)
Applies to
- NetApp SnapCenter versions 6.0.1, 6.0.1P1, 6.1P1, 6.1P2
- RabbitMQ bundled with SnapCenter
- Tenable or similar security scanning tools
- ONTAP 9.x environments
Issue
Customers running NetApp SnapCenter may receive security scan alerts (e.g., from Tenable) reporting a vulnerability in RabbitMQ or Erlang/OTP, such as:
TenablefindingforRabbitMQonyouroitscmgtservers(RabbitMQ < 3.13.8 (GHSA-gh3x-4x42-fvq8) (240739))
Installed version: 3.12.10.0
Path: C:\\Program Files\\RabbitMQ Server\\
Suggested fixed version: 3.13.8 or later
CVE: CVE-2025-50200
Symptoms:
- Security scan flags RabbitMQ or Erlang/OTP as vulnerable.
- SnapCenter is functioning normally; no service impact reported.