CVE-2024-48861
published 2024-11-22CVE-2024-48861: An OS command injection vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow local network attackers…
high7.3CVSS 4.0
AVPACLATPPRNUINVCHVIHVAHSCHSIHSAHEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
An OS command injection vulnerability has been reported to affect several product versions. If exploited, the vulnerability could allow local network attackers to execute commands.
We have already fixed the vulnerability in the following versions:
QuRouter 2.4.4.106 and later
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| qnap | qurouter | — | — |
| qnap | qurouter | — | — |
| qnap | qurouter | — | — |
| qnap | qurouter | — | — |
| qnap | qurouter | — | — |
| qnap | qurouter | — | — |
| qnap_systems_inc | qurouter | >= 2.4.x < 2.4.4.106 | 2.4.4.106 |