Vulnerabilities > Starwindsoftware > SAN > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-02-06 CVE-2022-24552 OS Command Injection vulnerability in Starwindsoftware NAS and SAN
A flaw was found in the REST API in StarWind Stack.
network
low complexity
starwindsoftware CWE-78
critical
9.8
2022-02-06 CVE-2022-24551 Improper Authentication vulnerability in Starwindsoftware NAS and SAN
A flaw was found in StarWind Stack.
network
low complexity
starwindsoftware CWE-287
critical
9.0