CVE-2024-53696 QuLog Center

🗓️ 07 Mar 2025 16:13:55Reported by qnapType

Vulnerability CVE-2024-53696 in QuLog Center allows SSRF attacks by remote administrators.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2024-53696	7 Mar 202516:35	–	circl
CNNVD	QNAP Systems QTS、QNAP Systems QuTS hero和QNAP Systems QuLog Center 代码问题漏洞	7 Mar 202500:00	–	cnnvd
CVE	CVE-2024-53696	7 Mar 202516:13	–	cve
EUVD	EUVD-2024-54244	3 Oct 202520:07	–	euvd
NVD	CVE-2024-53696	7 Mar 202517:15	–	nvd
OpenVAS	QNAP QTS SSRF Vulnerability (QSA-24-53)	10 Mar 202500:00	–	openvas
OpenVAS	QNAP QuTS hero SSRF Vulnerability (QSA-24-53)	10 Mar 202500:00	–	openvas
OSV	CVE-2024-53696	7 Mar 202517:15	–	osv
RedhatCVE	CVE-2024-53696	9 Mar 202516:35	–	redhatcve
Tenable Nessus	Qnap QTS and QuTS hero Server-Side Request Forgery(CVE-2024-53696)	8 Dec 202500:00	–	nessus

[
  {
    "defaultStatus": "unaffected",
    "product": "QuLog Center",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "1.7.0.829 ( 2024/10/01 )",
        "status": "affected",
        "version": "1.7.x.x",
        "versionType": "custom"
      },
      {
        "lessThan": "1.8.0.888 ( 2024/10/15 )",
        "status": "affected",
        "version": "1.8.x.x",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "QTS",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "4.5.4.2957 build 20241119",
        "status": "affected",
        "version": "4.5.x",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "QuTS hero",
    "vendor": "QNAP Systems Inc.",
    "versions": [
      {
        "lessThan": "h4.5.4.2956 build 20241119",
        "status": "affected",
        "version": "h4.5.x",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
qnap	www.qnap.com/en/security-advisory/qsa-24-53

07 Mar 2025 16:13Current

CVSS 45.1

EPSS0.00411

CWE-918