- Description
- Quantum StorNext Web GUI API before 7.2.4 grants access to internal StorNext configuration and unauthorized modification of some software configuration parameters via undocumented user credentials. This affects StorNext RYO before 7.2.4, StorNext Xcellis Workflow Director before 7.2.4, and ActiveScale Cold Storage.
- Source
- cve@mitre.org
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 7.2
- Impact score
- 2.7
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
- Severity
- HIGH
- cve@mitre.org
- CWE-798
- Hype score
- Not currently trending
🚨 CVE-2025-46617 🔴 HIGH (7.2) 🏢 Quantum - StorNext 🏗️ 0 🔗 https://t.co/6Rny0Wp0eV #CyberCron #VulnAlert #InfoSec https://t.co/SNPSNMhjVl
@cybercronai
25 Apr 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-46617 Quantum StorNext Web GUI API before 7.2.4 grants access to internal StorNext configuration and unauthorized modification of some software configuration parameters via… https://t.co/NBRMlFjwdI
@CVEnew
25 Apr 2025
448 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes