A cross-site scripting (XSS) vulnerability has been reported to affect QNAP device running QmailAgent. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already fixed this vulnerability in the following versions of QmailAgent: QmailAgent 3.0.2 ( 2021/08/25 ) and later
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.qnap.com/en/security-advisory/qsa-21-47 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: qnap
Published: 2021-11-13T00:50:10.221066Z
Updated: 2024-09-17T02:15:40.656Z
Reserved: 2021-06-08T00:00:00
Link: CVE-2021-34357
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-11-13T01:15:07.557
Modified: 2021-11-16T15:01:54.090
Link: CVE-2021-34357
Redhat
No data.