Vulnerabilities > Starwindsoftware > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-06 | CVE-2022-24551 | Improper Authentication vulnerability in Starwindsoftware NAS and SAN A flaw was found in StarWind Stack. | 9.0 |
| 2022-02-06 | CVE-2022-24552 | OS Command Injection vulnerability in Starwindsoftware NAS and SAN A flaw was found in the REST API in StarWind Stack. | 9.8 |
| 2021-12-08 | CVE-2021-43527 | Out-of-bounds Write vulnerability in multiple products NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. | 9.8 |