Описание
A cleartext transmission of sensitive information vulnerability has been reported to affect certain QTS devices. If exploited, this vulnerability allows a remote attacker to gain access to sensitive information. QNAP have already fixed this vulnerability in the following versions: QTS 4.4.3.1354 build 20200702 (and later)
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.4.3.1354 (исключая)
cpe:2.3:o:qnap:qts:*:*:*:*:*:*:*:*
EPSS
Процентиль: 35%
0.00146
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-311
CWE-319
Связанные уязвимости
github
больше 3 лет назад
A cleartext transmission of sensitive information vulnerability has been reported to affect certain QTS devices. If exploited, this vulnerability allows a remote attacker to gain access to sensitive information. QNAP have already fixed this vulnerability in the following versions: QTS 4.4.3.1354 build 20200702 (and later)
EPSS
Процентиль: 35%
0.00146
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-311
CWE-319