CVE-2021-32958

Name of the Vulnerable Software and Affected Versions Claroty Secure Remote Access (SRA) Site versions 3.0 through 3.2

Description Successful exploitation of this issue allows an attacker with local command line interface access to gain the secret key, subsequently allowing them to generate valid session tokens for the web user interface (UI). With access to the web UI, an attacker can access assets managed by the SRA installation and could compromise the installation.

Recommendations For versions 3.0 through 3.2, update to a version that includes a fix for this issue to prevent exploitation. As a temporary workaround, consider restricting access to the local command line interface to minimize the risk of an attacker gaining the secret key. Additionally, monitor the SRA installation for any suspicious activity and limit access to the web UI to authorized personnel only.