VYPR

Q'center Virtual Appliance

by Qnap

CVEs (7)

  • CVE-2018-0706HigJul 17, 2018
    risk 0.64cvss 8.8epss 0.49

    Exposure of Private Information in QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to access sensitive information.

  • CVE-2018-0708HigJul 17, 2018
    risk 0.62cvss 8.8epss 0.26

    Command injection vulnerability in networking of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.

  • CVE-2018-0710HigJul 17, 2018
    risk 0.61cvss 8.8epss 0.14

    Command injection vulnerability in SSH of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.

  • CVE-2018-0709HigJul 17, 2018
    risk 0.61cvss 8.8epss 0.14

    Command injection vulnerability in date of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.

  • CVE-2018-0707HigJul 17, 2018
    risk 0.55cvss 7.2epss 0.59

    Command injection vulnerability in change password of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.

  • CVE-2018-0723Dec 26, 2018
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in Q'center Virtual Appliance 1.8.1014 and earlier versions could allow remote attackers to inject Javascript code in the compromised application, a different vulnerability than CVE-2018-0724.

  • CVE-2018-0724Dec 26, 2018
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in Q'center Virtual Appliance 1.8.1014 and earlier versions could allow remote attackers to inject Javascript code in the compromised application, a different vulnerability than CVE-2018-0723.