Lucene search
K

9 matches found

NVD
NVD
added 2021/06/16 4:15 a.m.14 views

CVE-2021-28815

Insecure storage of sensitive information has been reported to affect QNAP NAS running myQNAPcloud Link. If exploited, this vulnerability allows remote attackers to read sensitive information by accessing the unrestricted storage mechanism. This issue affects: QNAP Systems Inc. myQNAPcloud Link...

6CVSS0.01711EPSS
Exploits0References1
Prion
Prion
added 2021/06/16 4:15 a.m.18 views

Code injection

Insecure storage of sensitive information has been reported to affect QNAP NAS running myQNAPcloud Link. If exploited, this vulnerability allows remote attackers to read sensitive information by accessing the unrestricted storage mechanism. This issue affects: QNAP Systems Inc. myQNAPcloud Link...

4CVSS4.9AI score0.01711EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/16 4:0 a.m.21 views

CVE-2021-28815 Insecure Storage of Sensitive Information in myQNAPcloud Link

Insecure storage of sensitive information has been reported to affect QNAP NAS running myQNAPcloud Link. If exploited, this vulnerability allows remote attackers to read sensitive information by accessing the unrestricted storage mechanism. This issue affects: QNAP Systems Inc. myQNAPcloud Link...

6CVSS6AI score0.01711EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/06/16 12:0 a.m.8 views

QNAP NAS 安全漏洞

Qnap Systems QNAP NAS running Multimedia Console is an application from China Weilian Qnap Systems. A Multimedia Console. A security vulnerability exists in QNAP NAS that stems from insecure storage of sensitive information in myQNAPcloud Link. The following products and versions are affected: QN...

6CVSS5.3AI score0.01711EPSS
Exploits0References2
NVD
NVD
added 2021/06/03 3:15 a.m.19 views

CVE-2021-28812

A command injection vulnerability has been reported to affect certain versions of Video Station. If exploited, this vulnerability allows remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. Video Station versions prior to 5.5.4 on QTS 4.5.2; versions prior to 5.5....

8.8CVSS0.01553EPSS
Exploits0References1
NVD
NVD
added 2021/06/03 3:15 a.m.15 views

CVE-2021-28807

A post-authentication reflected XSS vulnerability has been reported to affect QNAP NAS running Q’center. If exploited, this vulnerability allows remote attackers to inject malicious code. QNAP have already fixed this vulnerability in the following versions of Q’center: QTS 4.5.3: Q’center...

7.7CVSS0.0138EPSS
Exploits1References3
Prion
Prion
added 2021/06/03 3:15 a.m.17 views

Command injection

A command injection vulnerability has been reported to affect certain versions of Video Station. If exploited, this vulnerability allows remote attackers to execute arbitrary commands. This issue affects: QNAP Systems Inc. Video Station versions prior to 5.5.4 on QTS 4.5.2; versions prior to 5.5....

6.5CVSS9AI score0.01553EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/06/03 2:45 a.m.91 views

CVE-2021-28807

CVE-2021-28807 describes a post-authentication reflected XSS vulnerability affecting QNAP NAS when using Q’center. The issue enables an attacker to inject malicious code via the Q’center web interface, with potential remote impact. According to the records, QNAP has issued fixes in multiple versi...

7.7CVSS5.6AI score0.0138EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2021/06/03 2:45 a.m.17 views

CVE-2021-28807 Post-Authentication Reflected XSS Vulnerability in Q'center

A post-authentication reflected XSS vulnerability has been reported to affect QNAP NAS running Q’center. If exploited, this vulnerability allows remote attackers to inject malicious code. QNAP have already fixed this vulnerability in the following versions of Q’center: QTS 4.5.3: Q’center...

7.7CVSS7.4AI score0.0138EPSS
Exploits1References3
Rows per page
Query Builder