216.73.217.64

CVE-2023-23356

· Published 19/12/2024 02:15 · Modified 19/12/2024 02:15

Labels: CVE-2023-23356 2024-12-19CVE-2023-23356CWE-77[email protected]

Essential information

Published
19/12/2024 02:15
Modified
19/12/2024 02:15
Author
Creator
CVSS
5.5 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:N

CVSS metrics

Description

A command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute arbitrary commands. We have already fixed the vulnerability in the following versions: QuFirewall 2.3.3 ( 2023/03/27 ) and later and later

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References