VDB
CVE-2022-27592
CVE-2022-27592
PUBLISHED
CVSS 6.699999809265137 MEDIUM
De multiples vulnérabilités ont été découvertes dans les produits Qnap. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et une injection de code indirecte à distance (XSS).
EPSS 0.05% · 16.5th percentile
Risk Scores
CVSS 3.1
6.699999809265137
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.05%
16.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| qnap | qvr_smart_client | 2.4.0 |
| Qnap | QuTS hero | |
| Qnap | Helpdesk | |
| Qnap | Music Station | |
| qnap | qvr_smart_client | 2.4.0 |
| Qnap | Download Station | |
| Qnap | QVR | |
| Qnap | Notes Station | |
| Qnap | QuMagie | |
| Qnap | QTS | |
| Qnap | Video Station | |
| Qnap | QuLog Center | |
| QNAP Systems Inc. | QVR Smart Client | 2.4.x.x |
Exploit Intelligence
Timeline
- Sep 6, 2024 CVE Published
- Sep 6, 2024 CVE Updated
- Sep 7, 2024 EPSS Score
- Sep 27, 2024 EPSS Score
- Oct 17, 2024 EPSS Score
- Nov 6, 2024 EPSS Score
- Nov 26, 2024 EPSS Score
- Dec 17, 2024 EPSS Score
- Jan 6, 2025 EPSS Score
- Jan 26, 2025 EPSS Score
- Feb 15, 2025 EPSS Score
- Mar 7, 2025 EPSS Score
References
- https://www.qnap.com/go/security-advisory/qsa-24-24 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-26 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-34 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-30 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-21 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-27 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-29 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-28 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-32 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-25 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-33 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-22 advisory
- https://www.qnap.com/go/security-advisory/qsa-24-35 advisory
- https://www.qnap.com/en/security-advisory/qsa-24-22 url
- https://nvd.nist.gov/vuln/detail/CVE-2022-27592 advisory