VYPR

QcalAgent

by Qnap

CVEs (3)

  • CVE-2023-41289Jan 5, 2024
    risk 0.00cvss epss 0.01

    An OS command injection vulnerability has been reported to affect QcalAgent. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: QcalAgent 1.1.8 and later

  • CVE-2021-38678Jan 14, 2022
    risk 0.00cvss epss 0.01

    An open redirect vulnerability has been reported to affect QNAP device running QcalAgent. If exploited, this vulnerability allows attackers to redirect users to an untrusted page that contains malware. We have already fixed this vulnerability in the following versions of…

  • CVE-2021-38677Jan 14, 2022
    risk 0.00cvss epss 0.01

    A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running QcalAgent. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of QcalAgent: QcalAgent…