CVE-2021-32519

🗓️ 07 Jul 2021 14:12:00Reported by twcertType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 49 Views

Vulnerability in QSAN Storage Manager, XEVO, SANOS allows remote attackers to recover plain-text password

Reporter	Title	Published	Views	Family All 7
CNNVD	QSAN 多款产品安全漏洞	7 Jul 202100:00	–	cnnvd
CNVD	Unspecified Vulnerabilities in Various QSAN Products	9 Jul 202100:00	–	cnvd
Cvelist	CVE-2021-32519 QSAN Storage Manager, XEVO, SANOS - Use of Password Hash With Insufficient Computational Effort	7 Jul 202114:12	–	cvelist
EUVD	EUVD-2021-19365	7 Oct 202500:30	–	euvd
NVD	CVE-2021-32519	7 Jul 202114:15	–	nvd
OSV	CVE-2021-32519	7 Jul 202114:15	–	osv
Prion	Design/Logic Flaw	7 Jul 202114:15	–	prion

NVD

Vulners

Node

qsan sanosRange<2.1.0

qsan storage_managerRange<3.3.2

qsan xevoRange<2.1.0

[
  {
    "product": "Storage Manager",
    "vendor": "QSAN",
    "versions": [
      {
        "lessThanOrEqual": "3.3.1",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "XEVO",
    "vendor": "QSAN",
    "versions": [
      {
        "lessThan": "1.2.0",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "SANOS",
    "vendor": "QSAN",
    "versions": [
      {
        "status": "affected",
        "version": "2.0.0"
      }
    ]
  }
]

Source	Link
twcert	www.twcert.org.tw/tw/cp-132-4875-692f0-1.html

21 Nov 2024 06:07Current

7.8High risk

Vulners AI Score7.8

CVSS 25

CVSS 3.17.5 - 9.8

EPSS0.00102

CWE-916