CVE-2021-42082 - Local Privilege Escalation to root in OSNEXUS QuantaStor before 6.0.0.355

CVE	CVE-2021-42082
Credits	Wietse Boonstra
Affected products	Product Affected Unaffected Unknown OSNEXUS QuantaStor on Windows, Linux >= semver 0 to < 6.0.0.355 everything else
CVSS	Base score: 7.1 (HIGH)
References	https://www.wbsec.nl/osnexus ( third-party-advisory ) https://www.divd.nl/DIVD-2021-00020 ( third-party-advisory ) https://www.osnexus.com/products/software-defined-storage ( product ) https://csirt.divd.nl/CVE-2021-42082 ( third-party-advisory )
Problem type(s)	CWE-269 Improper Privilege Management
Solution(s)	Upgrade to the latest version of OSNEXUS QuantaStor.
Last modified	05 Jul 2023 21:48

Description

JSON version