VYPR
Unrated severityNVD Advisory· Published Dec 19, 2024· Updated Dec 24, 2024

QuLog Center

CVE-2023-23357

Description

A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to bypass security mechanisms or read application data.

We have already fixed the vulnerability in the following versions: QuLog Center 1.5.0.738 ( 2023/03/06 ) and later QuLog Center 1.4.1.691 ( 2023/03/01 ) and later QuLog Center 1.3.1.645 ( 2023/02/22 ) and later

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: >= 1.3.1.645, >= 1.4.1.691, >= 1.5.0.738
  • QNAP Systems Inc./QuLog Centerv5
    Range: 1.5.x.x

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.