A command injection vulnerability has been reported to affect License Center. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands.
We have already fixed the vulnerability in the following version:
License Center 1.9.43 and later
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.qnap.com/en/security-advisory/qsa-24-50 |
History
Fri, 06 Dec 2024 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Qnap
Qnap license Center |
|
CPEs | cpe:2.3:a:qnap:license_center:*:*:*:*:*:*:*:* | |
Vendors & Products |
Qnap
Qnap license Center |
|
Metrics |
ssvc
|
Fri, 06 Dec 2024 17:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A command injection vulnerability has been reported to affect License Center. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands. We have already fixed the vulnerability in the following version: License Center 1.9.43 and later | |
Title | License Center | |
Weaknesses | CWE-78 | |
References |
| |
Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: qnap
Published: 2024-12-06T16:36:52.105Z
Updated: 2024-12-06T19:32:20.048Z
Reserved: 2024-10-09T00:22:57.834Z
Link: CVE-2024-48863
Vulnrichment
Updated: 2024-12-06T19:32:14.740Z
NVD
Status : Received
Published: 2024-12-06T17:15:08.533
Modified: 2024-12-06T17:15:08.533
Link: CVE-2024-48863
Redhat
No data.