ГлавнаяУязвимости → CVE-2025-44015
8.4высокая

CVE-2025-44015

Описание

A command injection vulnerability has been reported to affect HybridDesk Station. If an attacker gains local network access, they can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following version: HybridDesk Station 4.2.18 and later

Затрагиваемое ПО
Qnap Hybriddesk station
CVSS
Балл8.4 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.qnap.com/en/security-advisory/qsa-25-20