Security Advisory

CVE-2021-45389

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-04 15:40:34

Last updated 2024-08-04 04:39:20

Assigner mitre

State PUBLISHED

Description

A flaw was found with the JWT token. A self-signed JWT token could be injected into the update manager and bypass the authentication process, thus could escalate privileges. This affects StarWind SAN and NAS build 1578 and StarWind Command Center build 6864.

← Browse all CVEs View on cve.org ↗