CVE-2021-32526

QSAN Storage Manager - Incorrect Permission Assignment for Critical Resource

CVSS 6.5 MEDIUMEPSS 0.9%CWE-732

Incorrect permission assignment for critical resource vulnerability in QSAN Storage Manager allows authenticated remote attackers to access arbitrary password files. Suggest contacting with QSAN and refer to recommendations in QSAN Document.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Produtos afetados

QSAN · Storage Manager

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.twcert.org.tw/tw/cp-132-4882-c0310-1.html