15 matches found
EUVD-2021-25118
Malware in sbrugna...
EUVD-2021-25119
Malware in sbrugna...
CVE-2021-38679
An improper authentication vulnerability has been reported to affect QNAP NAS running Kazoo Server. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of Kazoo Server: Kazoo Server 4.11.22...
CVE-2021-38679
An improper authentication vulnerability has been reported to affect QNAP NAS running Kazoo Server. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of Kazoo Server: Kazoo Server 4.11.22...
Authentication flaw
An improper authentication vulnerability has been reported to affect QNAP NAS running Kazoo Server. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of Kazoo Server: Kazoo Server 4.11.22...
CVE-2021-38679
CVE-2021-38679 is an improper authentication vulnerability affecting QNAP NAS running Kazoo Server . The root cause is failure of authentication controls in Kazoo Server, which can allow an attacker to compromise system security. Affected versions include Kazoo Server up to and including 4.11.21,...
CVE-2021-38679 Improper Authentication in Kazoo Server
An improper authentication vulnerability has been reported to affect QNAP NAS running Kazoo Server. If exploited, this vulnerability allows attackers to compromise the security of the system. We have already fixed this vulnerability in the following versions of Kazoo Server: Kazoo Server 4.11.22...
Kazoo Server 授权问题漏洞
Qnap Kazoo Server is a server from China's Weilian Technology Qnap. An authorization issue vulnerability exists in Kazoo Server because Qnap Nas running on the product does not validate the user's identity. The vulnerability can be exploited by an attacker to compromise the security of the system...
CVE-2021-38680
A cross-site scripting XSS vulnerability has been reported to affect QNAP device running Kazoo Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Kazoo Server: Kazoo Server 4.11.20 and la...
CVE-2021-38680
A cross-site scripting XSS vulnerability has been reported to affect QNAP device running Kazoo Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Kazoo Server: Kazoo Server 4.11.20 and la...
Cross site scripting
A cross-site scripting XSS vulnerability has been reported to affect QNAP device running Kazoo Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Kazoo Server: Kazoo Server 4.11.20 and la...
CVE-2021-38680 Reflected XSS in Kazoo Server
A cross-site scripting XSS vulnerability has been reported to affect QNAP device running Kazoo Server. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of Kazoo Server: Kazoo Server 4.11.20 and la...
CVE-2021-38680
CVE-2021-38680 describes a cross-site scripting (XSS) vulnerability affecting QNAP Kazoo Server. Public records identify it as a reflected XSS issue that could allow remote attackers to inject malicious code. The available data do not specify the exact vulnerable component or code path beyond the...
QNAP Kazoo Server Cross-Site Scripting Vulnerability
Qnap Kazoo Server is a server from China Welllink Technology Qnap. QNAP Kazoo Server suffers from a cross-site scripting vulnerability, which can be exploited by attackers to inject malicious code...
Qnap Kazoo Server 跨站脚本漏洞
Qnap Kazoo Server is a server from China Welllink Technology Qnap. QNAP Kazoo Server suffers from a cross-site scripting vulnerability, which can be exploited by attackers to inject malicious code...