← voltar
CVE-2024-48860

QHora

CVSS 9.5 CRITICALEPSS 1.5%CWE-77CWE-78
An OS command injection vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow remote attackers to execute commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.3.103 and later
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
Produtos afetados
QNAP Systems Inc. · QuRouter

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.qnap.com/en/security-advisory/qsa-24-44