Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
- EPSS 0.37%
- Published 06.02.2022 21:15:08
- Last modified 21.11.2024 06:50:39
A flaw was found in StarWind Stack. The endpoint for setting a new password doesn’t check the current username and old password. An attacker could reset any local user password (including system/administrator user) using any available user This affec...
- EPSS 1.09%
- Published 06.02.2022 21:15:08
- Last modified 21.11.2024 06:50:39
A flaw was found in the REST API in StarWind Stack. REST command, which manipulates a virtual disk, doesn’t check input parameters. Some of them go directly to bash as part of a script. An attacker with non-root user access can inject arbitrary data ...
1