Unrated severityNVD Advisory· Published Jan 4, 2022· Updated Aug 4, 2024
CVE-2021-45389
CVE-2021-45389
Description
A flaw was found with the JWT token. A self-signed JWT token could be injected into the update manager and bypass the authentication process, thus could escalate privileges. This affects StarWind SAN and NAS build 1578 and StarWind Command Center build 6864.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- StarWind/SAN and NASdescription
- Range: build 1578
- Range: build 6864
Patches
Vulnerability mechanics
References
2- www.starwindsoftware.com/security/sw-20211215-0001/mitrex_refsource_CONFIRM
- www.starwindsoftware.com/security/sw-20211512-0001/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.