Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Sensitive information via generation of error messages vulnerability in QES
Vulnerability Description
If exploited, this vulnerability could allow attackers to gain sensitive information via generation of error messages. QNAP has already fixed these issues in QES 2.1.1 Build 20201006 and later.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
通过错误消息导致的信息暴露
Vulnerability Title
QNAP QES 安全漏洞
Vulnerability Description
QNAP QES是中国QNAP公司的一款主要应用于管理文件的桌面操作系统。 QES 2.1.1 Build 20201006 之前版本存在安全漏洞,攻击者可利用该漏洞就可以通过生成错误消息来获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A