CVE-2021-45389
N/A
N/A
Summary
A flaw was found with the JWT token. A self-signed JWT token could be injected into the update manager and bypass the authentication process, thus could escalate privileges. This affects StarWind SAN and NAS build 1578 and StarWind Command Center build 6864.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.starwindsoftware.com/security/sw-20211512-0001/
- https://www.starwindsoftware.com/security/sw-20211215-0001/
References
- https://www.starwindsoftware.com/security/sw-20211512-0001/
- https://www.starwindsoftware.com/security/sw-20211215-0001/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.