Описание
An incorrect permission assignment for critical resource vulnerability has been reported to affect Notes Station 3. If exploited, the vulnerability could allow local authenticated attackers who have gained administrator access to read or modify the resource.
We have already fixed the vulnerability in the following version: Notes Station 3 3.9.7 and later
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 3.9.0 (включая) до 3.9.7 (исключая)
cpe:2.3:a:qnap:notes_station_3:*:*:*:*:*:*:*:*
EPSS
Процентиль: 12%
0.00041
Низкий
6 Medium
CVSS3
Дефекты
CWE-732
Связанные уязвимости
github
около 1 года назад
An incorrect permission assignment for critical resource vulnerability has been reported to affect Notes Station 3. If exploited, the vulnerability could allow local authenticated attackers who have gained administrator access to read or modify the resource. We have already fixed the vulnerability in the following version: Notes Station 3 3.9.7 and later
EPSS
Процентиль: 12%
0.00041
Низкий
6 Medium
CVSS3
Дефекты
CWE-732