โ† Back to Dashboard

CVE-2026-10880

CRITICAL NVD
CVSS Score
9.8
Severity
CRITICAL
Source
NVD
Published
Jun 04, 2026
Description

OSNexus QuantaStor SDS Manager is vulnerable to SQL injection in the login endpoint. The username field is not properly sanitized before being incorporated into a SQL query, allowing an unauthenticated remote attacker to bypass authentication and log in as an administrator without supplying a valid password.

View Full Details โ† Back