- Description
- A cross-site scripting (XSS) vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to bypass security mechanisms or read application data. We have already fixed the vulnerability in the following versions: QuLog Center 1.5.0.738 ( 2023/03/06 ) and later QuLog Center 1.4.1.691 ( 2023/03/01 ) and later QuLog Center 1.3.1.645 ( 2023/02/22 ) and later
- Source
- security@qnapsecurity.com.tw
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 4.8
- Impact score
- 2.7
- Exploitability score
- 1.7
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
- security@qnapsecurity.com.tw
- CWE-79
- Hype score
- Not currently trending
🔒 CVE-2023-23357 (Published: 2024-12-19) - A moderate vulnerability in QNAP devices. Affects specific versions; ensure your systems are updated! For remediation details, check the advisory here: https://t.co/wOsvqVwMCx. Stay secure! #CyberSecurity #QNAP
@transilienceai
19 Dec 2024
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔒 CVE-2023-23357 (Published: 2024-12-19) - A moderate vulnerability in QNAP devices. Affected versions include QSA-23-16. Ensure your systems are updated to the latest firmware to mitigate risks. For detailed remediation steps, visit: https://t.co/wOsvqVwMCx #CyberSecurity #QNAP
@transilienceai
19 Dec 2024
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes