36 matches found
EUVD-2021-15471
Malware in sbrugna...
EUVD-2024-19512
Malicious code in bioql PyPI...
EUVD-2024-30550
Malicious code in bioql PyPI...
CVE-2024-21901
A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 2023/11/24 and later QTS...
CVE-2024-32764
A missing authentication for critical function vulnerability has been reported to affect myQNAPcloud Link. If exploited, the vulnerability could allow users with the privilege level of some functionality via a network. We have already fixed the vulnerability in the following version: myQNAPcloud...
Qnap QTS and myQNAPcloud SQL Injection (CVE-2024-21901)
A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 2023/11/24 and later QTS...
CVE-2024-32764
A missing authentication for critical function vulnerability has been reported to affect myQNAPcloud Link. If exploited, the vulnerability could allow users with the privilege level of some functionality via a network. We have already fixed the vulnerability in the following version: myQNAPcloud...
CVE-2024-32764
A missing authentication for critical function vulnerability has been reported to affect myQNAPcloud Link. If exploited, the vulnerability could allow users with the privilege level of some functionality via a network. We have already fixed the vulnerability in the following version: myQNAPcloud...
CVE-2024-32764 myQNAPcloud Link
A missing authentication for critical function vulnerability has been reported to affect myQNAPcloud Link. If exploited, the vulnerability could allow users with the privilege level of some functionality via a network. We have already fixed the vulnerability in the following version: myQNAPcloud...
CVE-2024-32764
Summary: CVE-2024-32764 affects QNAP’s myQNAPcloud Link. The issue is a missing authentication for a critical function accessible over the network, potentially allowing a user with existing functional privileges to exploit it. Affected product/version: myQNAPcloud Link prior to 2.4.51 (vulnerable...
CVE-2024-32764 myQNAPcloud Link
A missing authentication for critical function vulnerability has been reported to affect myQNAPcloud Link. If exploited, the vulnerability could allow users with the privilege level of some functionality via a network. We have already fixed the vulnerability in the following version: myQNAPcloud...
QNAP Systems myQNAPcloud Link 访问控制错误漏洞
QNAP Systems myQNAPcloud Connect is an application for connecting, sharing, and managing QNAP NAS files from China Weilian Technology QNAP Systems. An access control error vulnerability previously existed in QNAP Systems myQNAPcloud Link version 2.4.51, which stemmed from a lack of critical...
PT-2024-24836
Name of the Vulnerable Software and Affected Versions myQNAPcloud Link versions prior to 2.4.51 Description A missing authentication for critical function vulnerability has been reported. If exploited, the vulnerability could allow users with the privilege level of some functionality via a networ...
CVE-2024-21901
A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 2023/11/24 and later QTS...
CVE-2024-21901
A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 2023/11/24 and later QTS...
Sql injection
A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 2023/11/24 and later QTS...
CVE-2024-21901 myQNAPcloud
A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 2023/11/24 and later QTS...
CVE-2024-21901
CVE-2024-21901 describes a SQL injection in myQNAPcloud that could allow authenticated administrators to inject code via a network. The affected software includes myQNAPcloud and QTS, with fixes in myQNAPcloud 1.0.52+ (2023-11-24) and QTS 4.5.4.2627+ (build 20231225+). The CVSS 3.1 metrics (NVD a...
CVE-2024-21901 myQNAPcloud
A SQL injection vulnerability has been reported to affect myQNAPcloud. If exploited, the vulnerability could allow authenticated administrators to inject malicious code via a network. We have already fixed the vulnerability in the following versions: myQNAPcloud 1.0.52 2023/11/24 and later QTS...
QNAP Systems SQL Injection Vulnerability in Multiple Products
QNAP Systems myQNAPcloud Connect and QNAP Systems QTS are both products of China's Weilian Technology QNAP Systems.QNAP Systems myQNAPcloud Connect is an application for connecting, sharing and managing QNAP NAS files. QNAP Systems QTS is an operating system for entry to mid-level QNAP NAS use. A...