Description

An OS command injection vulnerability has been reported to affect legacy QTS. If exploited, the vulnerability could allow authenticated administrators to execute commands via a network. We have already fixed the vulnerability in the following versions: QTS 4.3.6.2805 build 20240619 and later QTS 4.3.4.2814 build 20240618 and later QTS 4.3.3.2784 build 20240619 and later QTS 4.2.6 build 20240618 and later

INFO

Published Date :

2024-09-06T16:27:04.275Z

Last Modified :

2024-09-06T17:44:00.200Z

Source :

qnap
AFFECTED PRODUCTS

The following products are affected by CVE-2023-39300 vulnerability.

Vendors Products
Qnap
  • Qts
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-39300.

URL Resource
https://www.qnap.com/en/security-advisory/qsa-24-26 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact