CVE-2021-32523
Global infos:
Improper authorization vulnerability in QSAN Storage Manager allows remote privileged users to bypass the access control and execute arbitrary commands. Suggest contacting with QSAN and refer to recommendations in QSAN Document.
CVE Status: Modified
References:
Metrics:
| Attribute | Value |
|---|---|
| Attack Complexity | LOW |
| Attack Vector | NETWORK |
| Availability Impact | HIGH |
| Base Score | 9.1 |
| Base Severity | CRITICAL |
| Confidentiality Impact | HIGH |
| Integrity Impact | HIGH |
| Privileges Required | HIGH |
| Scope | CHANGED |
| User Interaction | NONE |
| Vector String | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
| Exploitability Score | 2.3 |
| Impact Score | 6 |
| Source | [email protected] |
| Type | Secondary |