VYPR

StarWind Stack

by StarWind

CVEs (1)

  • CVE-2022-24552Feb 6, 2022
    risk 0.00cvss epss 0.01

    A flaw was found in the REST API in StarWind Stack. REST command, which manipulates a virtual disk, doesn’t check input parameters. Some of them go directly to bash as part of a script. An attacker with non-root user access can inject arbitrary data into the command that will…