Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
QVPN Device Client, Qsync, Qfinder Pro
Vulnerability Description
A time-of-check time-of-use (TOCTOU) race condition vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow local attackers who have gained user access to gain access to otherwise unauthorized resources. We have already fixed the vulnerability in the following versions: QVPN Device Client for Mac 2.2.5 and later Qsync for Mac 5.1.3 and later Qfinder Pro Mac 7.11.1 and later
CVSS Information
N/A
Vulnerability Type
检查时间与使用时间(TOCTOU)的竞争条件
Vulnerability Title
QVPN Device Client、QNAP Systems Qsync和QNAP Systems Qfinder Pro 安全漏洞
Vulnerability Description
QNAP Systems QVPN Device Client等都是中国威联通科技(QNAP Systems)公司的产品。QVPN Device Client是一款客户端软件,用于管理与 QNAP 设备上运行的 VPN 服务器的连接。QNAP Systems Qfinder Pro是一款实用程序,可在同一网络下快速搜索和管理 NAS。QNAP Systems Qsync是一种文件同步服务,用于在 NAS 和其他设备之间同步文件和文件夹。 QVPN Device Client 2.2.5之前版本、QNAP
CVSS Information
N/A
Vulnerability Type
N/A