Unrated severityNVD Advisory· Published Mar 7, 2025· Updated Mar 7, 2025

QHora

CVE-2024-50390

Description

A command injection vulnerability has been reported to affect QHora. If exploited, the vulnerability could allow remote attackers to execute arbitrary commands.

We have already fixed the vulnerability in the following version: QuRouter 2.4.5.032 and later

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

QHora/QuRouterllm-create
Range: <2.4.5.032
QNAP Systems Inc./QuRouterv5
Range: 2.4.x

Patches

Vulnerability mechanics

References

www.qnap.com/en/security-advisory/qsa-25-01mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000