Описание
An SQL injection vulnerability has been reported to affect Hyper Data Protector. The remote attackers can then exploit the vulnerability to execute unauthorized code or commands.
We have already fixed the vulnerability in the following versions: Hyper Data Protector 2.2.4.1 and later
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2.1.0.0226 (включая) до 2.2.4.1 (исключая)
Одно из
cpe:2.3:a:qnap:hyper_data_protector:*:*:*:*:*:*:*:*
cpe:2.3:a:qnap:hyper_data_protector:2.0.0.1115:beta:*:*:*:*:*:*
EPSS
Процентиль: 29%
0.00106
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-89
Связанные уязвимости
CVSS3: 9.8
github
около 1 месяца назад
An SQL injection vulnerability has been reported to affect Hyper Data Protector. The remote attackers can then exploit the vulnerability to execute unauthorized code or commands. We have already fixed the vulnerability in the following versions: Hyper Data Protector 2.2.4.1 and later
EPSS
Процентиль: 29%
0.00106
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-89