CVE-2022-32268

Name of the Vulnerable Software and Affected Versions StarWind SAN and NAS version 0.2 build 1914

Description A flaw was found in the REST API of StarWind Stack, allowing remote code execution. The REST command for changing the hostname does not check the new hostname parameter, which can be exploited by an attacker with non-root user access to inject arbitrary data into the command. This command is executed with root privileges, posing a significant risk.

Recommendations For StarWind SAN and NAS version 0.2 build 1914, consider restricting access to the REST API endpoint that allows changing the hostname until a patch is available. As a temporary workaround, limit the ability of non-root users to interact with this endpoint to minimize the risk of exploitation.