5.3
CVE-2021-32515
- EPSS 0.79%
- Veröffentlicht 07.07.2021 14:15:10
- Zuletzt bearbeitet 21.11.2024 06:07:10
- Quelle twcert@cert.org.tw
- CVE-Watchlists
- Unerledigt
LoginQSAN Storage Manager - Exposure of Information Through Directory Listing
Directory listing vulnerability in share_link in QSAN Storage Manager allows attackers to list arbitrary directories and further access credential information. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Qsan ≫ Storage Manager Version < 3.3.3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.79% | 0.515 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
| twcert@cert.org.tw | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
|
CWE-548 Exposure of Information Through Directory Listing
A directory listing is inappropriately exposed, yielding potentially sensitive information to attackers.
https://www.twcert.org.tw/tw/cp-132-4871-2a2d7-1.html