VYPR
Unrated severityNVD Advisory· Published Jul 7, 2021· Updated Sep 16, 2024

QSAN XEVO - Command Injection Following via Array function

CVE-2021-32530

Description

OS command injection vulnerability in Array function in QSAN XEVO allows remote unauthenticated attackers to execute arbitrary commands via status parameter. The referred vulnerability has been solved with the updated version of QSAN XEVO v2.1.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Qsan/Xevollm-fuzzy2 versions
    <2.1.0+ 1 more
    • (no CPE)range: <2.1.0
    • (no CPE)range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.