CVE-2024-38641

UNKNOWN

Published 2024-09-06T16:27:46.814Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-38641. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

We have already fixed the vulnerability in the following versions:
QTS 5.1.8.2823 build 20240712 and later
QuTS hero h5.1.8.2823 build 20240712 and later

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

QNAP Systems Inc.

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-crwj-f9hc-c6g4

Advisory Details

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow local network users to execute commands via unspecified vectors. We have already fixed the vulnerability in the following versions: QTS 5.1.8.2823 build 20240712 and later QuTS hero h5.1.8.2823 build 20240712 and later

CVSS Scoring

CVSS Score

7.5

CVSS Vector


                                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-38641

WEB https://www.qnap.com/en/security-advisory/qsa-24-33

Advisory provided by GitHub Security Advisory Database. Published: September 6, 2024, Modified: September 16, 2024

References

https://www.qnap.com/en/security-advisory/qsa-24-33

Published: 2024-09-06T16:27:46.814Z

Last Modified: 2024-09-06T17:04:38.717Z

Copied to clipboard!

CVE-2024-38641

Expert Analysis

Description

Available Exploits

Related News

Affected Products

QTS

Affected Versions:

QuTS hero

Affected Versions:

quts_hero

Affected Versions:

qts

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!