Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
QVPN Device Client
Vulnerability Description
An insufficiently protected credentials vulnerability has been reported to affect QVPN Device Client. If exploited, the vulnerability could allow local authenticated administrators to gain access to user accounts and access sensitive data used by the user account via unspecified vectors. We have already fixed the vulnerability in the following version: QVPN Windows 2.1.0.0518 and later
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N
Vulnerability Type
不充分的凭证保护机制
Vulnerability Title
QNAP Systems QVPN 安全漏洞
Vulnerability Description
QNAP Systems QVPN是中国威联通科技(QNAP Systems)公司的一系列虚拟专用网软件。 QNAP Systems QVPN Device Client (Windows)2.1.0.0518之前版本存在安全漏洞,该漏洞源于存在一个未充分保护的凭据,攻击者利用该漏洞可以访问用户帐户,并通过未指定的向量访问用户帐户使用的敏感数据。
CVSS Information
N/A
Vulnerability Type
N/A