exploitDog

GHSA-29h6-xjp2-cgj2

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A buffer overflow vulnerability in external device function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices.

A buffer overflow vulnerability in external device function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices.

Ссылки

EPSS

Процентиль: 91%

0.0731

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-119

Связанные уязвимости

CVE-2017-17028

CVSS3: 9.8

nvd

около 8 лет назад

A buffer overflow vulnerability in external device function in QNAP QTS version 4.2.6 build 20171026, 4.3.3.0378 build 20171117, 4.3.4.0387 (Beta 2) build 20171116 and earlier could allow remote attackers to execute arbitrary code on NAS devices.

EPSS

Процентиль: 91%

0.0731

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-119