Hard-coded Cryptographic Key Vulnerability in QSAN Storage Manager: User Credential and Permission Exposure

CVE-2021-32520 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Use of hard-coded cryptographic key vulnerability in QSAN Storage Manager allows attackers to obtain users’ credentials and related permissions. Suggest contacting with QSAN and refer to recommendations in QSAN Document.

Learn more about our Contact.