Vulnerabilities > CVE-2021-32506 - Absolute Path Traversal vulnerability in Qsan Storage Manager
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Absolute Path Traversal vulnerability in GetImage in QSAN Storage Manager allows remote authenticated attackers download arbitrary files via the Url path parameter. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3 .
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |