CVE-2025-46617 Information

Apr 26, 2025 cve

Description

Quantum StorNext Web GUI API before 7.2.4 grants access to internal StorNext configuration and unauthorized modification of some software configuration parameters via undocumented user credentials. This affects StorNext RYO before 7.2.4 StorNext Xcellis Workflow Director before 7.2.4 and ActiveScale Cold Storage.

Reference

https://www.quantum.com/en/service-support/security-bulletins/stornext-gui-multiple-security-vulnerabilities-stornext-gui-multiple-security-vulnerabilities/

Share on: