Vulnerabilities (CVE)

Filtered by vendor Starwind Subscribe
Filtered by product San\&nas
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-45389 1 Starwind 2 Command Center, San\&nas 2022-01-14 7.5 HIGH 9.8 CRITICAL
StarWind SAN & NAS build 1578 and StarWind Command Center Build 6864 Update Manager allows authentication with JTW token which is signed with any key. An attacker could use self-signed JTW token to bypass authentication resulting in escalation of privileges.