Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
QcalAgent
Vulnerability Description
An OS command injection vulnerability has been reported to affect QcalAgent. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: QcalAgent 1.1.8 and later
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
QNAP Systems QcalAgent 安全漏洞
Vulnerability Description
QNAP Systems QcalAgent是中国威联通科技(QNAP Systems)公司的一个时间管理中心。用于管理个人行程,与他人共用日历,分享彼此的排程。 QNAP Systems QcalAgent 1.1.8 版本之前存在安全漏洞,该漏洞源于存在操作系统命令注入漏洞,该漏洞可能允许经过身份验证的用户通过网络执行命令。
CVSS Information
N/A
Vulnerability Type
N/A