Qnap QTS and QuTS hero Server-Side Request Forgery(CVE-2024-53696)

A server-side request forgery SSRF vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow remote attackers who have gained administrator access to read application data. We have already fixed the vulnerability in the following versions: QuLog Center...

CVE-2024-48862

A link following vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow remote attackers to traverse the file system to unintended locations and read or overwrite the contents of unexpected files. We have already fixed the vulnerability in the followin...

CVE-2024-48862

CVE-2024-48862 affects QNAP’s QuLog Center. A link-following vulnerability could allow remote attackers to traverse the file system and read or overwrite files. Affected versions are prior to 1.7.0.831 and prior to 1.8.0.888; fixed in 1.7.0.831+ and 1.8.0.888+. CVSS metrics indicate high impact (...

CVE-2024-48862 QuLog Center

A link following vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow remote attackers to traverse the file system to unintended locations and read or overwrite the contents of unexpected files. We have already fixed the vulnerability in the followin...

QNAP Systems QuLog Center 安全漏洞

QNAP Systems QuLog Center is a report field for China Weilian Technology QNAP Systems that records events reported by the system. A security vulnerability exists in QNAP Systems QuLog Center prior to version 1.7.0.831 and prior to version 1.8.0.888, which stems from the inclusion of a link tracki...

PT-2024-33250 · Unknown · Qulog Center

Name of the Vulnerable Software and Affected Versions: QuLog Center versions prior to 1.7.0.831 QuLog Center versions prior to 1.8.0.888 Description: A link following vulnerability has been reported to affect QuLog Center, allowing remote attackers to traverse the file system to unintended...