ГлавнаяУязвимости → CVE-2024-38644
8.8высокая

CVE-2024-38644

Описание

An OS command injection vulnerability has been reported to affect Notes Station 3. If exploited, the vulnerability could allow remote authenticated attackers to execute commands. We have already fixed the vulnerability in the following version: Notes Station 3 3.9.7 and later

Затрагиваемое ПО
Qnap Notes station 3
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.qnap.com/en/security-advisory/qsa-24-36