CVE-2024-32762
published 2024-09-06CVE-2024-32762: A cross-site scripting (XSS) vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow users to inject malicious code…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
A cross-site scripting (XSS) vulnerability has been reported to affect QuLog Center. If exploited, the vulnerability could allow users to inject malicious code via a network.
We have already fixed the vulnerability in the following versions:
QuLog Center 1.8.0.872 ( 2024/06/17 ) and later
QuLog Center 1.7.0.827 ( 2024/06/17 ) and later
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| qnap | qulog_center | >= 1.7.0 < 1.7.0.827 | 1.7.0.827 |
| qnap | qulog_center | >= 1.8.0 < 1.8.0.872 | 1.8.0.872 |
| qnap_systems_inc | qulog_center | >= 1.7.x.x < 1.7.0.827 ( 2024/06/17 ) | 1.7.0.827 ( 2024/06/17 ) |
| qnap_systems_inc | qulog_center | >= 1.8.x.x < 1.8.0.872 ( 2024/06/17 ) | 1.8.0.872 ( 2024/06/17 ) |