漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
QuFirewall
Vulnerability Description
A path traversal vulnerability has been reported to affect QuFirewall. If exploited, the vulnerability could allow authenticated administrators to read the contents of unexpected files and expose sensitive data via a network. We have already fixed the vulnerability in the following version: QuFirewall 2.4.1 ( 2024/02/01 ) and later
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:L
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
QNAP Systems QuFirewall 路径遍历漏洞
Vulnerability Description
QNAP Systems QuFirewall是中国威联通科技(QNAP Systems)公司的一个 QNAP 设备的内置防火墙应用程序。 QNAP Systems QuFirewall 2.4.1 及之前版本存在路径遍历漏洞,该漏洞源于允许经过身份验证的管理员读取文件的内容并通过网络暴露敏感数据。
CVSS Information
N/A
Vulnerability Type
N/A