cvedb.io
CVE-2021-32958
MEDIUM · CVSS 5.5
EPSS exploitation probability: 0%
Published 2022-05-23T20:16:40.753 · Last modified 2026-06-17T03:53:52.363

Summary

Successful exploitation of this vulnerability on Claroty Secure Remote Access (SRA) Site versions 3.0 through 3.2 allows an attacker with local command line interface access to gain the secret key, subsequently allowing them to generate valid session tokens for the web user interface (UI). With access to the web UI an attacker can access assets managed by the SRA installation and could compromise the installation.

Affected products

claroty — secure_remote_access

Does this affect you?

Add your gear to cvedb and we'll alert you only when claroty ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.