Disk Sorter Enterprise 12 contains a high-severity security flaw that could allow an attacker to compromise the host system's data integrity.

This vulnerability resides in the Disk Sorter Enterprise 12 management interface or core service. With a CVSS score of 7.8, it likely involves a flaw that allows an authenticated or unauthenticated attacker to execute unauthorized commands or access sensitive file system metadata.

Successful exploitation could lead to unauthorized file manipulation, data loss, or the exposure of file system structures across the enterprise. This poses a significant risk to organizational data management and could be used as a stepping stone for further network infiltration.

Immediate Action: Upgrade Disk Sorter Enterprise to the latest version immediately to address this vulnerability.

Proactive Monitoring: Monitor for unusual service restarts or administrative logins to the Disk Sorter web interface from unrecognized IP addresses.

Compensating Controls: Restrict access to the Disk Sorter management ports (typically TCP 8080) to authorized administrative workstations only via host-based firewalls.

Public Exploit Available: false

We recommend an immediate update of Disk Sorter Enterprise 12. Maintaining up-to-date enterprise management software is critical for preventing unauthorized access to the underlying storage infrastructure.