A stored cross-site scripting (XSS) vulnerability has been reported to affect multiple versions of QTS. If exploited, this vulnerability may allow an attacker to inject and execute scripts on the administrator console. To fix this vulnerability, QNAP recommend updating QTS to the latest version.
References
Link | Resource |
---|---|
https://www.qnap.com/zh-tw/security-advisory/nas-201911-26 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: qnap
Published: 2019-12-04T16:45:00
Updated: 2019-12-04T16:45:00
Reserved: 2019-01-29T00:00:00
Link: CVE-2019-7197
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-12-04T17:16:44.447
Modified: 2019-12-06T19:14:48.177
Link: CVE-2019-7197
JSON object: View
Redhat Information
No data.
CWE