Design/Logic Flaw

2021-07-0714:15:00

PRIOn knowledge base

www.prio-n.com

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.5%

JSON

Use of MAC address as an authenticated password in QSAN Storage Manager, XEVO, SANOS allows local attackers to escalate privileges. Suggest contacting with QSAN and refer to recommendations in QSAN Document.

CPENameOperatorVersion
sanosle2.0.0
storage_managerle3.3.1
xevolt1.2.0

Name	Operator	Version
sanos	le	2.0.0
storage_manager	le	3.3.1
xevo	lt	1.2.0

References

www.twcert.org.tw/tw/cp-132-4877-7b696-1.html