Vulners
Lucene search
CVE-2021-42079
๐๏ธย 10 Jul 2023ย 06:29:48Reported byย DIVDTypeย 
ย cve๐ย web.nvd.nist.gov๐ย 27ย Views๐ WEB
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | CVE-2021-42079 | 9 Jan 202508:17 | โ | circl |
 | OSNEXUS QuantaStor ไปฃ็ ้ฎ้ขๆผๆด | 10 Jul 202300:00 | โ | cnnvd |
 | CVE-2021-42079 SSRF vulnerability in OSNEXUS QuantaStor before 6.0.0.355 | 10 Jul 202306:29 | โ | cvelist |
 | EUVD-2021-29065 | 3 Oct 202520:07 | โ | euvd |
 | CVE-2021-42079 | 10 Jul 202316:15 | โ | nvd |
 | CVE-2021-42079 | 10 Jul 202316:15 | โ | osv |
 | Server side request forgery (ssrf) | 10 Jul 202316:15 | โ | prion |
 | PT-2023-12394 ยท Osnexus ยท Quantastor | 10 Jul 202300:00 | โ | ptsecurity |
 | CVE-2021-42079 | 22 May 202518:48 | โ | redhatcve |
 | CVE-2021-42079 SSRF vulnerability in OSNEXUS QuantaStor before 6.0.0.355 | 10 Jul 202306:29 | โ | vulnrichment |
10
Node
[
{
"collectionURL": "https://www.osnexus.com/downloads",
"defaultStatus": "unknown",
"platforms": [
"Windows",
"Linux"
],
"product": "QuantaStor",
"vendor": "OSNEXUS",
"versions": [
{
"lessThan": "6.0.0.355",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| senderEmailAddress | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
| smtpServerIpAddress | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
| smtpServerPort | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
| smtpUsername | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
| smtpPassword | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
| smtpAuthType | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
| customerSupportEmailAddress | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
| poolFreeSpaceWarningThreshold | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
| poolFreeSpaceAlertThreshold | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
| poolFreeSpaceCriticalAlertThreshold | query param | /qstorapi/alertConfigSet | Authenticated admin can configure an alert that triggers an SSRF to a target via crafted webhook URLs in alert configuration (SSRF during alert setup). | CWE-918 |
10
Data
Build on a solid foundation withย Vulners data
Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data
Api
Power your application withย Vulners API
The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access
App
Assess and manage vulnerabilities withย Vulnersย tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
22 Sep 2025 07:15Current
5.3Medium risk
Vulners AI Score5.3
CVSS 3.14.9 - 6.2
EPSS0.00067
SSVC