漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Missing Authentication for Critical Function in RTRR Server in HBS3
Vulnerability Description
An improper access control vulnerability has been reported to affect certain legacy versions of HBS 3. If exploited, this vulnerability allows attackers to compromise the security of the operating system.QNAP have already fixed this vulnerability in the following versions of HBS 3: QTS 4.3.6: HBS 3 v3.0.210507 and later QTS 4.3.4: HBS 3 v3.0.210506 and later QTS 4.3.3: HBS 3 v3.0.210506 and later
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
访问控制不恰当
Vulnerability Title
QNAP HBS 3 访问控制错误漏洞
Vulnerability Description
Qnap Systems QNAP HBS 3是中国威联通(Qnap Systems)公司的一个应用系统。一种全面的数据备份和灾难恢复解决方案。 HBS 3 Hybrid Backup Sync存在访问控制错误漏洞,该漏洞允许远程攻击者可利用该漏洞获得未经授权的访问,否则受到限制的功能。受影响的产品及版本如下:HBS 3混合备份同步:3.0.190923、3.0.191016、3.0.191108、3.0.191115、3.0.191202、3.0.191209、3.0.200113、3.0.200212
CVSS Information
N/A
Vulnerability Type
N/A