漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
QSAN Storage Manager - Absolute Path Traversal via FileDownload function
Vulnerability Description
Absolute Path Traversal vulnerability in FileDownload in QSAN Storage Manager allows remote authenticated attackers download arbitrary files via the Url path parameter. The referred vulnerability has been solved with the updated version of QSAN Storage Manager v3.3.3.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
绝对路径遍历
Vulnerability Title
QSAN Storage Manager 路径遍历漏洞
Vulnerability Description
QSAN Storage Manager是广盛科技股份有限公司(QSAN)的一个NAS操作系统。 QSAN Storage Manager存在安全漏洞,该漏洞允许远程认证攻击者可利用该漏洞通过Url路径参数下载任意文件。
CVSS Information
N/A
Vulnerability Type
N/A