CVE-2022-30421
HIGHToshiba Storage Security Software V1.2.0.7413 - Improper Authentication
Title source: llmDescription
Improper Authentication vulnerability in Toshiba Storage Security Software V1.2.0.7413 is that allows for sensitive information to be obtained via(local) password authentication module.
References (4)
Core 4
Core References
Not Applicable
http://global.11st.co.kr/glb/product/SellerProductDetail.tmall?method=getSellerProductDetail&prdNo=1398327038
Not Applicable
http://global.gmarket.co.kr/item?goodscode=741668527
Exploit, Third Party Advisory
https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-px7r-44vj-8h7m
Broken Link
https://www.ebay.com/itm/274246695791
Scores
CVSS v3
7.8
EPSS
0.0035
EPSS Percentile
26.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
no
Technical Impact
total
Details
CWE
CWE-287
Status
published
Products (1)
toshiba/storage_security_software
1.2.0.7413
Published
Jan 31, 2023
Tracked Since
Feb 18, 2026