Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
QTS, QuTS hero
Vulnerability Description
An SQL injection vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to execute unauthorized code or commands. We have already fixed the vulnerability in the following versions: QTS 5.2.7.3297 build 20251024 and later QuTS hero h5.2.7.3297 build 20251024 and later QuTS hero h5.3.1.3292 build 20251024 and later
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
QNAP Systems Hero和QNAP Systems QTS SQL注入漏洞
Vulnerability Description
QNAP Systems Hero和QNAP Systems QTS都是中国威联通科技(QNAP Systems)公司的产品。QNAP Systems Hero是一款用于管理文件的NAS操作系统。该系统保留了QTS的应用生态,整合更强大的128位ZFS文件系统,为企业提供更稳定可靠的NAS存储解决方案。QNAP Systems QTS是一个具有数据存储与管理功能的软件。 QNAP Systems Hero和QNAP Systems QTS存在SQL注入漏洞,该漏洞源于容易受到SQL注入攻击,可能导致执行未
CVSS Information
N/A
Vulnerability Type
N/A