1 results (0.004 seconds)
CVSS: 9.0EPSS: 49%CPEs: 1EXPL: 0
CVSS: 9.0EPSS: 49%CPEs: 1EXPL: 0CVE-2023-47565 – QNAP VioStor NVR OS Command Injection Vulnerability
https://notcve.org/view.php?id=CVE-2023-47565
08 Dec 2023 — An OS command injection vulnerability has been found to affect legacy QNAP VioStor NVR models running QVR Firmware 4.x. If exploited, the vulnerability could allow authenticated users to execute commands via a network. We have already fixed the vulnerability in the following versions: QVR Firmware 5.0.0 and later Se ha descubierto que una vulnerabilidad de inyección de comandos del sistema operativo afecta a los modelos QNAP VioStor NVR heredados que ejecutan el firmware QVR 4.x. Si se explota, la vulnerabi... • https://www.qnap.com/en/security-advisory/qsa-23-48 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •