Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-m3fm-4744-qmhg

Опубликовано: 06 дек. 2024
Источник: github
Github: Не прошло ревью
CVSS4: 9.5
CVSS3: 9.8

Описание

An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If exploited, the vulnerability could allow remote attackers to execute commands.

We have already fixed the vulnerability in the following version: HBS 3 Hybrid Backup Sync 25.1.1.673 and later

An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If exploited, the vulnerability could allow remote attackers to execute commands.

We have already fixed the vulnerability in the following version: HBS 3 Hybrid Backup Sync 25.1.1.673 and later

Ссылки

EPSS

Процентиль: 91%
0.06798
Низкий

9.5 Critical

CVSS4

9.8 Critical

CVSS3

CVE ID

CVE-2024-50388

Дефекты

CWE-77

Связанные уязвимости

nvd логотип

CVE-2024-50388

CVSS3: 9.8
nvd
около 1 года назад

An OS command injection vulnerability has been reported to affect HBS 3 Hybrid Backup Sync. If exploited, the vulnerability could allow remote attackers to execute commands. We have already fixed the vulnerability in the following version: HBS 3 Hybrid Backup Sync 25.1.1.673 and later

fstec логотип

BDU:2024-08774

CVSS3: 9.8
fstec
больше 1 года назад

Уязвимость программного средства для резервного копирования и аварийного восстановления HBS 3 Hybrid Backup Sync. сетевых устройств QNAP, позволяющая нарушителю выполнять произвольные команды

EPSS

Процентиль: 91%
0.06798
Низкий

9.5 Critical

CVSS4

9.8 Critical

CVSS3

CVE ID

CVE-2024-50388

Дефекты

CWE-77