← volver
CVE-2021-32514

QSAN Storage Manager - Improper Access Control Following via FirwareUpgrade function

CVSS 7.5 HIGHEPSS 1.2%CWE-284
Improper access control vulnerability in FirmwareUpgrade in QSAN Storage Manager allows remote attackers to reboot and discontinue the device. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Productos afectados
QSAN · Storage Manager

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.twcert.org.tw/tw/cp-132-4870-83620-1.html