exploitDog

CVE-2020-2502

Опубликовано: 17 фев. 2021

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

This cross-site scripting vulnerability in Photo Station allows remote attackers to inject malicious code. QANP We have already fixed this vulnerability in the following versions of Photo Station. Photo Station 6.0.11 and later

Ссылки

https://www.qnap.com/en/security-advisory/qsa-21-06
Vendor Advisory
https://www.qnap.com/en/security-advisory/qsa-21-06
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:qnap:photo_station:*:*:*:*:*:*:*:*

Версия до 6.0.11 (исключая)

EPSS

Процентиль: 47%

0.00239

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

CWE-79

Связанные уязвимости

GHSA-rfgf-6g5x-fx98

github

больше 3 лет назад

This cross-site scripting vulnerability in Photo Station allows remote attackers to inject malicious code. QANP We have already fixed this vulnerability in the following versions of Photo Station. Photo Station 6.0.11 and later

EPSS

Процентиль: 47%

0.00239

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

CWE-79