Auth bypass in Softiron Hypercloud
CVE-2024-13058
An issue exists in SoftIron HyperCloud where authenticated, but non-admin users can create data pools, which could potentially impact the performance and availability of the backend software-defined storage subsystem. This issue only imp…
Vulnerability class: Privilege Escalation
EPSS: 0.002 (37.7th percentile) — read the EPSS interpretation.
Affected products
- Softiron Hypercloud — versions 2.3.0