Lucene search
K

CVE-2024-50389

🗓️ 06 Dec 2024 16:35:45Reported by qnapType 
cve
 cve
🔗 web.nvd.nist.gov👁 59 Views

SQL injection vulnerability in QuRouter allows remote code injection; fixed in version 2.4.5.032.

Related
Detection
Affected
Refs
NVD
Node
qnapqurouterMatch2.4.0.190build_20240522
OR
qnapqurouterMatch2.4.1.172build_20240606
OR
qnapqurouterMatch2.4.1.634build_20240710
OR
qnapqurouterMatch2.4.2.317build_20240903
OR
qnapqurouterMatch2.4.2.538build_20240923
OR
qnapqurouterMatch2.4.3.103build_20241011
OR
qnapqurouterMatch2.4.4.106build_20241017
[
  {
    "defaultStatus": "unaffected",
    "product": "QuRouter",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "2.4.5.032",
        "status": "affected",
        "version": "2.4.x",
        "versionType": "custom"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

24 Sep 2025 19:18Current
7.6High risk
Vulners AI Score7.6
CVSS 3.19.8
CVSS 49.5
EPSS0.02155
SSVC
59