Описание
A cross-site request forgery (CSRF) vulnerability has been reported to affect QuLog Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities.
We have already fixed the vulnerability in the following version: QuLog Center 1.8.2.927 ( 2025/09/17 ) and later
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 1.8.0.872 (включая) до 1.8.2.923 (исключая)
cpe:2.3:a:qnap:qulog_center:*:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00063
Низкий
8.8 High
CVSS3
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 8.8
github
3 месяца назад
A cross-site request forgery (CSRF) vulnerability has been reported to affect QuLog Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities. We have already fixed the vulnerability in the following version: QuLog Center 1.8.2.927 ( 2025/09/17 ) and later
EPSS
Процентиль: 20%
0.00063
Низкий
8.8 High
CVSS3
Дефекты
CWE-352