VYPR
Unrated severityNVD Advisory· Published Jan 5, 2024· Updated Jun 17, 2025

QcalAgent

CVE-2023-41289

Description

An OS command injection vulnerability has been reported to affect QcalAgent. If exploited, the vulnerability could allow authenticated users to execute commands via a network.

We have already fixed the vulnerability in the following version: QcalAgent 1.1.8 and later

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Qnap/QcalAgentllm-create
    Range: >=1.1.8
  • QNAP Systems Inc./QcalAgentv5
    Range: 1.1.x

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.