CVE-2021-32529

Summary

Command injection vulnerability in QSAN XEVO, SANOS allows remote unauthenticated attackers to execute arbitrary commands. Suggest contacting with QSAN and refer to recommendations in QSAN Document.

Affected Software

VendorProductVersion RangeStatus
QSANXEVOunspecified < 1.2.0affected
QSANSANOSunspecified <= 2.0.0affected

Weaknesses

  • CWE-77: CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')

ADP Enrichment

CVE Program Container

Additional References

References