CVE-2021-32515

Medium

Directory listing vulnerability in share_link in QSAN Storage Manager allows attackers to list arbitrary directories and further access…

twcert·CWE-548·Published 2021-07-07

CVSS

5.3

EPSS

0.01

KEV

Exploits

cve.orgen

259 chars

Directory listing vulnerability in share_link in QSAN Storage Manager allows attackers to list arbitrary directories and further access credential information. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.

NVDen

259 chars

NVDes

295 chars

La vulnerabilidad del listado de directorios en share_link en QSAN Storage Manager permite a los atacantes listar directorios arbitrarios y acceder a la información de las credenciales. La vulnerabilidad referida ha sido resuelta con la versión actualizada de QSAN Storage Manager versión v3.3.3

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.1	Primary	cve.org	5.3	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N