Use of password hash with insufficient computational effort vulnerability in QSAN Storage Manager, XEVO, SANOS allows remote attackers to recover the plain-text password by brute-forcing the MD5 hash. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.2, QSAN XEVO v2.1.0, and QSAN SANOS v2.1.0.
References
Link | Resource |
---|---|
https://www.twcert.org.tw/tw/cp-132-4875-692f0-1.html | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: twcert
Published: 2021-07-07T00:00:00
Updated: 2021-07-22T10:32:43
Reserved: 2021-05-10T00:00:00
Link: CVE-2021-32519
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-07-07T14:15:11.020
Modified: 2021-09-20T18:33:39.207
Link: CVE-2021-32519
JSON object: View
Redhat Information
No data.
CWE