Vulnerability Details CVE-2021-32525
The same hard-coded password in QSAN Storage Manager's in the firmware allows remote attackers to access the control interface with the administrator’s credential, entering the hard-coded password of the debug mode to execute the restricted system instructions. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.5%
CVSS Severity
CVSS v3 Score 9.1
CVSS v2 Score 9.0
References
Products affected by CVE-2021-32525
-
cpe:2.3:a:qsan:storage_manager:-