CVE-2024-21906 in QTSالمعلومات

الملخص

بحسب MITRE • 06/09/2024

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network.

We have already fixed the vulnerability in the following versions: QTS 5.1.8.2823 build 20240712 and later QuTS hero h5.1.8.2823 build 20240712 and later

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

Qnap

حجز

03/01/2024

إفشاء

06/09/2024

الاعتدال

تمت الموافقة

إدخال

VDB-276742

CPE

جاهز

CWE

CWE-78 (مؤكد)

CVSS

4.7 (NVD)

EPSS

0.00289

KEV

لا

النشاطات

منخفض جدًا

القطاع

Telecommunication, Lawfirm, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-21906
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-21906
CVE Details	https://www.cvedetails.com/cve/CVE-2024-21906/

التالي ▸نظرة عامة ◂ السابق

Want to stay up to date on a daily basis?

Enable the mail alert feature now!