QND vulnerable to privilege escalation

Overview QND provided by QualitySoft Corporation contains the following vulnerability. Privilege Chaining CWE-268 - CVE-2025-64701 Tongren Chen of PwC Consulting LLC reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership...

QualitySoft QND 安全漏洞

QualitySoft QND is a comprehensive IT operations management tool from QualitySoft Japan. A security vulnerability exists in QualitySoft QND version 11.0.9i and prior versions, which stems from improper privilege management and may result in elevated privileges...

JVN#05579230: Multiple Alps System Integration products and the OEM products vulnerable to cross-site request forgery

Multiple Alps System Integration products and the OEM products contain a cross-site request forgery vulnerability CWE-352. Impact If a user views a malicious page while logged in, unintended operations may be performed. Solution Update the software or apply the workaround Update the software to t...

QND Advance has an unspecified vulnerability

QualitySoft QND is a suite of IT asset management solutions from QualitySoft Japan. The solution features external media control, device operation log viewing and URL filtering. QND Advance 11.0.4i suffers from a Privilege Permission and Access Control Issue vulnerability that originates from an...

QND vulnerable to privilege escalation

Overview QND provided by QualitySoft Corporation contains a privilege escalation vulnerability CWE-268. Satoshi Ogawa of Mitsui Bussan Secure Directions, Inc. RedTeam reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership...

QualitySoft QND 权限许可和访问控制问题漏洞

QualitySoft QND is a suite of IT asset management solutions from QualitySoft Japan. The solution features external media control, device operation log viewing and URL filtering. QND Advance 11.0.4i suffers from a Privilege Permission and Access Control Issue vulnerability that originates from an...

JVN#74686032: QND vulnerable to privilege escalation

QND provided by QualitySoft Corporation contains a privilege escalation vulnerability CWE-268. Impact A user who can log in to the PC where the product's Windows client is installed may obtain administrative privileges. As a result, sensitive information may be modified/obtained or unintended...

QualitySoft QND Directory Traversal Vulnerability

QualitySoft QND is a suite of IT asset management solutions from QualitySoft Japan. The solution features external media control, device operation log viewing and URL filtering. A directory traversal vulnerability exists in QualitySoft QND Advance/Standard. An attacker can exploit this...