Описание
Directory listing vulnerability in share_link in QSAN Storage Manager allows attackers to list arbitrary directories and further access credential information. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 3.3.3 (исключая)
cpe:2.3:a:qsan:storage_manager:*:*:*:*:*:*:*:*
EPSS
Процентиль: 40%
0.00178
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-548
Связанные уязвимости
github
больше 3 лет назад
Directory listing vulnerability in share_link in QSAN Storage Manager allows attackers to list arbitrary directories and further access credential information.
EPSS
Процентиль: 40%
0.00178
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-548