Lucene search
+L

4 matches found

OpenVAS
OpenVAS
added 2025/03/10 12:0 a.m.6 views

QNAP QuTS hero SSRF Vulnerability (QSA-24-53)

QNAP QuTS hero is prone to a server-side request forgery SSRF vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.1CVSS6.9AI score0.00411EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/09 4:35 p.m.21 views

CVE-2024-53696

A server-side request forgery SSRF vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow remote attackers who have gained administrator access to read application data. We have already fixed the vulnerability in the following versions: QuLog Center...

5.1CVSS6.9AI score0.00411EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/07 4:13 p.m.8 views

CVE-2024-53696 QuLog Center

A server-side request forgery SSRF vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow remote attackers who have gained administrator access to read application data. We have already fixed the vulnerability in the following versions: QuLog Center...

5.1CVSS7.2AI score0.00411EPSS
Exploits0References1
CVE
CVE
added 2025/03/07 4:13 p.m.55 views

CVE-2024-53696

CVE-2024-53696 is an SSRF vulnerability affecting QNAP products, specifically QuLog Center (readable data by admins), with fixes in QuLog Center 1.7.0.829+ and 1.8.0.888+, QTS 4.5.4.2957+ (build 20241119+), and QuTS hero h4.5.4.2956+ (build 20241119+). The issue originates from server-side reques...

5.1CVSS7.2AI score0.00411EPSS
Exploits0References1Affected Software3
Rows per page
Query Builder