ГлавнаяУязвимости → CVE-2024-50389
9.8критическая

CVE-2024-50389

→ есть в БДУ: BDU:2024-08774 (на русском)
Описание (на английском; русское — в БДУ выше)

A SQL injection vulnerability has been reported to affect QuRouter. If exploited, the vulnerability could allow remote attackers to inject malicious code. We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later

Затрагиваемое ПО
Qnap Qurouter
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.qnap.com/en/security-advisory/qsa-24-45