CVE-2021-32518

High

A vulnerability in share_link in QSAN Storage Manager allows remote attackers to create a symbolic link then access arbitrary files. The…

twcert·CWE-61·Published 2021-07-07

CVSS

7.5

EPSS

0.02

KEV

Exploits

cve.orgen

232 chars

A vulnerability in share_link in QSAN Storage Manager allows remote attackers to create a symbolic link then access arbitrary files. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.

NVDen

232 chars

NVDes

264 chars

Una vulnerabilidad en share_link en QSAN Storage Manager permite a los atacantes remotos crear un enlace simbólico y luego acceder a archivos arbitrarios. La vulnerabilidad referida ha sido resuelta con la versión actualizada de QSAN Storage Manager versión v3.3.3

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.1	Primary	cve.org	7.5	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N