An incorrect permission assignment for critical resource vulnerability has been reported to affect Qsync Central. If exploited, the vulnerability could allow authenticated users to read or modify the resource via a network.
We have already fixed the vulnerability in the following versions:
Qsync Central 4.4.0.15 ( 2024/01/04 ) and later
Qsync Central 4.3.0.11 ( 2024/01/11 ) and later
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.qnap.com/en/security-advisory/qsa-24-03 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: qnap
Published: 2024-02-02T16:05:54.662Z
Updated: 2024-08-29T19:48:47.318Z
Reserved: 2023-11-06T14:11:12.322Z
Link: CVE-2023-47564
Vulnrichment
Updated: 2024-08-02T21:09:37.410Z
NVD
Status : Analyzed
Published: 2024-02-02T16:15:52.280
Modified: 2024-02-09T19:33:26.900
Link: CVE-2023-47564
Redhat
No data.