CyberRota
← Ana sayfaya dön

CVE-2026-10880

CRITICAL · CVSS 9.8 EPSS %0.44

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-04T18:16:28.587 · Çekilme zamanı: 2026-06-30T12:10:12.086464+00:00

CyberRota Yorumu

SQL Injection riski içeriyor. Uzaktan istismar edilebilir olabilir.

CVE
CVE-2026-10880
Severity
CRITICAL
CVSS
9.8
EPSS
%0.44

Orijinal NVD Açıklaması

OSNexus QuantaStor SDS Manager is vulnerable to SQL injection in the login endpoint. The username field is not properly sanitized before being incorporated into a SQL query, allowing an unauthenticated remote attacker to bypass authentication and log in as an administrator without supplying a valid password.