Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:1361412562310126910HistoryMay 28, 2024 - 12:00 a.m.
QNAP QuTS hero < 5.2.0 Log Spoofing Vulnerability
2024-05-2800:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
4
qnap
quts hero
log spoofing
vulnerability
update
remote
banner
cve-2024-27131
security
design choice
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
QNAP QuTS hero is prone to a log spoofing vulnerability.
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/o:qnap:quts_hero";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.126910");
script_version("2024-06-04T05:05:28+0000");
script_tag(name:"last_modification", value:"2024-06-04 05:05:28 +0000 (Tue, 04 Jun 2024)");
script_tag(name:"creation_date", value:"2024-05-28 08:20:42 +0000 (Tue, 28 May 2024)");
script_tag(name:"cvss_base", value:"6.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:P/I:P/A:P");
script_cve_id("CVE-2024-27131");
script_tag(name:"qod_type", value:"remote_banner");
script_tag(name:"solution_type", value:"VendorFix");
script_name("QNAP QuTS hero < 5.2.0 Log Spoofing Vulnerability");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("General");
script_dependencies("gb_qnap_nas_http_detect.nasl");
script_mandatory_keys("qnap/nas/quts_hero/detected");
script_tag(name:"summary", value:"QNAP QuTS hero is prone to a log spoofing vulnerability.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Log spoofing via x-forwarded-for allows users to cause
downloads to be recorded as requested from arbitrary source location.
Note: Vendor states that it's not a vulnerability, but a design choice.");
script_tag(name:"affected", value:"QNAP QuTS hero prior to version h5.2.0.");
script_tag(name:"solution", value:"Update to version h5.2.0 or later.");
script_xref(name:"URL", value:"https://www.qnap.com/en-us/news/2024/official-response-from-qnap-psirt-regarding-recent-security-reports-watchtowr-labs");
script_xref(name:"URL", value:"https://labs.watchtowr.com/qnap-qts-qnapping-at-the-wheel-cve-2024-27130-and-friends/");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if (!version = get_app_version(cpe: CPE, nofork: TRUE))
exit(0);
if (version_is_less(version: version, test_version: "h5.2.0")) {
report = report_fixed_ver(installed_version: version, fixed_version: "h5.2.0");
security_message(port: 0, data: report);
exit(0);
}
exit(99);
Related
openvas
openvas
QNAP QTS < 5.2.0 Log Spoofing Vulnerability
2024-05-28 00:00:00
QNAP QuTS hero Multiple Vulnerabilities (QSA-24-23)
2024-05-28 00:00:00
QNAP QTS Multiple Vulnerabilities (QSA-24-23)
2024-05-28 00:00:00
vulnrichment
vulnrichment
CVE-2024-27130 QTS, QuTS hero
2024-05-21 16:08:46
cvelist
cvelist
CVE-2024-27130 QTS, QuTS hero
2024-05-21 16:08:46
githubexploit
githubexploit
Exploit for CVE-2024-27130
2024-05-17 07:58:01
Exploit for CVE-2024-27130
2024-05-21 11:14:22
nvd
nvd
CVE-2024-27130
2024-05-21 16:15:25
cve
cve
CVE-2024-27130
2024-05-21 16:15:25
thn
thn
QNAP Patches New Flaws in QTS and QuTS hero Impacting NAS Appliances
2024-05-22 05:15:00
7.2 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L
6.4 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
9.1%
Related for OPENVAS:1361412562310126910