Vulnerabilities > CVE-2023-47560 - Unspecified vulnerability in Qnap Qumagie 2.2.0

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

qnap

NVD

Published: 2024-01-05

Updated: 2024-11-21

Summary

An OS command injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following version: QuMagie 2.2.1 and later

Vulnerable Configurations

Part	Description	Count
Application	Qnap Qnap Qumagie 2.2.0	1

References

https://www.qnap.com/en/security-advisory/qsa-23-23
https://www.qnap.com/en/security-advisory/qsa-23-23