CVE-2021-32525

HIGH Year: 2021
CVSS v3 Score
7.2
High
CVSS v2 Score
9.0
Critical
Weakness Type
CWE-259
View all →

Vulnerability Description

The same hard-coded password in QSAN Storage Manager's in the firmware allows remote attackers to access the control interface with the administrator’s credential, entering the hard-coded password of the debug mode to execute the restricted system instructions. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.

Related Vulnerabilities

CVE-2019-13530

HIGH
CVSS:7.2(High)

Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN Version A, Firmware A.03.09, Part #: M8096-67501, WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by ...

CWE-2592019

CVE-2020-2499

HIGH
CVSS:7.2(High)

A hard-coded password vulnerability has been reported to affect earlier versions of QES. If exploited, this vulnerability could allow attackers to log in with a hard-coded password. QNAP has already f...

CWE-2592020

CVE-2024-11630

MEDIUM
CVSS:7.3(High)

A vulnerability has been found in E-Lins H685, H685f, H700, H720, H750, H820, H820Q, H820Q0 and H900 up to 3.2 and classified as critical. This vulnerability affects unknown code of the component OEM ...

CWE-2592024

CVE-2025-2322

MEDIUM
CVSS:7.3(High)

A vulnerability was found in 274056675 springboot-openai-chatgpt e84f6f5. It has been classified as critical. This affects an unknown part of the file /chatgpt-boot/src/main/java/org/springblade/modul...

CWE-2592025

CVE-2024-27164

HIGH
CVSS:7.1(High)

Toshiba printers contain hardcoded credentials. As for the affected products/models/versions, see the reference URL.

CWE-2592024

CVE-2019-3908

HIGH
CVSS:7.5(High)

Premisys Identicard version 3.1.190 stores backup files as encrypted zip files. The password to the zip is hard-coded and unchangeable. An attacker with access to these backups can decrypt them and ob...

CWE-2592019