CVE-2025-46617 – Quantum StorNext Web GUI API Unauthorized Configuration Access and Modification

April 25, 2025

CVE ID : CVE-2025-46617

Published : April 25, 2025, 7:15 a.m. | 14 minutes ago

Description : Quantum StorNext Web GUI API before 7.2.4 grants access to internal StorNext configuration and unauthorized modification of some software configuration parameters via undocumented user credentials. This affects StorNext RYO before 7.2.4, StorNext Xcellis Workflow Director before 7.2.4, and ActiveScale Cold Storage.

Severity: 7.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticlePasses is a GUI tool to manage your digital passes

Next Article CVE-2025-46616 – Quantum StorNext Web GUI API RCE

How To Prevent WordPress SQL Injection Attacks

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Databricks adds new tools like Lakebase, Lakeflow Designer, and Agent Bricks to better support building AI apps and agents in the enterprise

Zencoder launches end-to-end UI testing agent

NVIDIA chief rebuffs Anthropic’s AI slashing 50% of entry-level white collar jobs from Gen Z claim: “He thinks AI is so scary, but only they should do it.”

OpenAI shifts to Google for cloud computing support as Microsoft partnership falters, despite Sam Altman’s “compute-sufficient” claim

Clair Obscur: Expedition 33 now lets you rematch the game’s most brutal boss

The Alters PC review: I’m rethinking my own life paths after falling in love with a sci-fi game

SVAR Svelte Filter: Visual Query Builder for Data-Driven Apps

SVAR Svelte Filter: Visual Query Builder for Data-Driven Apps

Developing a Serverless Blogging Platform with AWS Lambda and Python

YAML files in DBT

NVIDIA chief rebuffs Anthropic’s AI slashing 50% of entry-level white collar jobs from Gen Z claim: “He thinks AI is so scary, but only they should do it.”

NVIDIA chief rebuffs Anthropic’s AI slashing 50% of entry-level white collar jobs from Gen Z claim: “He thinks AI is so scary, but only they should do it.”

OpenAI shifts to Google for cloud computing support as Microsoft partnership falters, despite Sam Altman’s “compute-sufficient” claim

Clair Obscur: Expedition 33 now lets you rematch the game’s most brutal boss

CVE-2025-46617 – Quantum StorNext Web GUI API Unauthorized Configuration Access and Modification

Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction

Windows SMB Client Zero-Day Vulnerability Exploited Using Reflective Kerberos Relay Attack

CVE-2025-40671 – AES Multimedia Gestnet SQL Injection

Meta AI Introduces Token-Shuffle: A Simple AI Approach to Reducing Image Tokens in Transformers

CVE-2025-4052 – Google Chrome DevTools Authorization Bypass

Critical Wazuh bug exploited in growing Mirai botnet infection

CVE-2025-20979 – Android libsavscmn Out-of-Bounds Write Arbitrary Code Execution

Meet BioReason: The World’s First Reasoning Model in Biology that Enables AI to Reason about Genomics like a Biology Expert

CVE-2025-5387 – JeeWMS File Handler Improper Access Controls Remote Vulnerability

CVE-2023-31585 – Grocery-CMS-PHP Unauthenticated File Upload Vulnerability

CVE-2025-46617 – Quantum StorNext Web GUI API Unauthorized Configuration Access and Modification

Related Posts