92 matches found
CVE-2024-50390
A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...
CVE-2024-53700 QHora
A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.6.028 and later...
CVE-2024-53700
The CVE-2024-53700 entry describes a command injection affecting QHora/QNAP QuRouter, with remote attackers who have gained administrator access able to execute arbitrary commands. Affected software is QuRouter prior to 2.4.6.028; a fix is available in 2.4.6.028 and later. The vulnerability’s roo...
CVE-2024-53700 QHora
A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.6.028 and later...
CVE-2024-50390
CVE-2024-50390 affects QNAP QuRouter/QHora vulnerability described as a remote command injection. Evidence across sources indicates the issue allows executing arbitrary commands and is mitigated by a patch in QuRouter 2.4.5.032 and later. The NVD entry lists a high-severity impact (CVSS 3.1: CRIT...
CVE-2024-50390 QHora
A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...
CVE-2024-50390 QHora
A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...
QNAP Systems QuRouter 命令注入漏洞
QNAP Systems QuRouter is a router management system from China Weilian Technology QNAP Systems. A command injection vulnerability exists in QNAP Systems QuRouter versions prior to 2.4.6.028, which stems from command injection and could lead to a remote attacker executing arbitrary commands...
QNAP Systems QuRouter 安全漏洞
QNAP Systems QuRouter is a router management system from China Weilian Technology QNAP Systems. A security vulnerability exists in QNAP Systems QuRouter that stems from command injection and could lead to a remote attacker executing arbitrary commands...
CVE-2024-50389
A SQL injection vulnerability has been reported to affect QuRouter. If exploited, the vulnerability could allow remote attackers to inject malicious code. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...
CVE-2024-50389
A SQL injection vulnerability has been reported to affect QuRouter. If exploited, the vulnerability could allow remote attackers to inject malicious code. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...
CVE-2024-50389
CVE-2024-50389 affects QuRouter and is a SQL injection vulnerability. The issue could allow remote attackers to inject code. A patch fixes the vulnerability starting with QuRouter 2.4.5.032 and later. The public documentation lists high-severity metrics (CVSS 3.1: 9.8; CVSS 4.0: 9.5) and indicate...
CVE-2024-50389 QuRouter
A SQL injection vulnerability has been reported to affect QuRouter. If exploited, the vulnerability could allow remote attackers to inject malicious code. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...
CVE-2024-50389 QuRouter
A SQL injection vulnerability has been reported to affect QuRouter. If exploited, the vulnerability could allow remote attackers to inject malicious code. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later...
QNAP Systems QuRouter 安全漏洞
QNAP Systems QuRouter is a router management system from China Weilian Technology QNAP Systems. A security vulnerability exists in QNAP Systems QuRouter version 2.4.5.032 and prior versions, which stems from the inclusion of a SQL injection vulnerability...
The vulnerability of the QuRouter operating system for QNAP network devices lies in the lack of measures taken to neutralize special elements used in the operating system’s commands. This allows attackers to execute arbitrary commands.
The vulnerability of the QuRouter operating system for QNAP network devices is related to the lack of measures taken to neutralize special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
CVE-2024-48860
An OS command injection vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow remote attackers to execute commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.3.103 and later...
CVE-2024-48861
An OS command injection vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow local network attackers to execute commands. We have already fixed the vulnerability in the following versions: QuRouter 2.4.4.106 and later...
CVE-2024-48860
An OS command injection vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow remote attackers to execute commands. We have already fixed the vulnerability in the following version: QuRouter 2.4.3.103 and later...
CVE-2024-48861
An OS command injection vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow local network attackers to execute commands. We have already fixed the vulnerability in the following versions: QuRouter 2.4.4.106 and later...