CVE-2024-38643

UNKNOWN

Published 2024-11-22T15:32:38.356Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-38643. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

We have already fixed the vulnerability in the following version:
Notes Station 3 3.9.7 and later

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

QNAP Systems Inc.

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed CRITICAL

GHSA-2g2v-h26j-4qfh

Advisory Details

A missing authentication for critical function vulnerability has been reported to affect Notes Station 3. If exploited, the vulnerability could allow remote attackers to gain access to and execute certain functions. We have already fixed the vulnerability in the following version: Notes Station 3 3.9.7 and later

CVSS Scoring

CVSS Score

9.0

CVSS Vector


                                    CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-38643

WEB https://www.qnap.com/en/security-advisory/qsa-24-36

Advisory provided by GitHub Security Advisory Database. Published: November 22, 2024, Modified: November 22, 2024

References

https://www.qnap.com/en/security-advisory/qsa-24-36

Published: 2024-11-22T15:32:38.356Z

Last Modified: 2024-11-22T16:51:35.154Z

Copied to clipboard!

CVE-2024-38643

Expert Analysis

Description

Available Exploits

Related News

Affected Products

Notes Station 3

Affected Versions:

notes_station_3

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!