CVE-2021-32520

Critical

Use of hard-coded cryptographic key vulnerability in QSAN Storage Manager allows attackers to obtain users’ credentials and related…

twcert·CWE-321·Published 2021-07-07

CVSS

9.8

EPSS

0.01

KEV

Exploits

cve.orgen

220 chars

Use of hard-coded cryptographic key vulnerability in QSAN Storage Manager allows attackers to obtain users’ credentials and related permissions. Suggest contacting with QSAN and refer to recommendations in QSAN Document.

NVDen

220 chars

NVDes

266 chars

El uso de la vulnerabilidad de la clave criptográfica codificada en QSAN Storage Manager permite a los atacantes obtener las credenciales de los usuarios y los permisos relacionados. Se sugiere contactar con QSAN y consultar las recomendaciones del documento de QSAN

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	7.5	10.0	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
3.1	Primary	cve.org	9.8	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H