CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0708

Command injection vulnerability in networking of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.658

EPSS Ranking 98.4%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.0

References

Products affected by CVE-2018-0708

Qnap » Q'center » Version: 1.1.15

cpe:2.3:a:qnap:q'center:1.1.15
Qnap » Q'center » Version: 1.1.17

cpe:2.3:a:qnap:q'center:1.1.17
Qnap » Q'center » Version: 1.1.25

cpe:2.3:a:qnap:q'center:1.1.25
Qnap » Q'center » Version: 1.2.101

cpe:2.3:a:qnap:q'center:1.2.101
Qnap » Q'center » Version: 1.3.503

cpe:2.3:a:qnap:q'center:1.3.503
Qnap » Q'center » Version: 1.4.16

cpe:2.3:a:qnap:q'center:1.4.16
Qnap » Q'center » Version: 1.4.519

cpe:2.3:a:qnap:q'center:1.4.519
Qnap » Q'center » Version: 1.5.607

cpe:2.3:a:qnap:q'center:1.5.607
Qnap » Q'center » Version: 1.6.1056

cpe:2.3:a:qnap:q'center:1.6.1056
Qnap » Q'center » Version: 1.6.1075

cpe:2.3:a:qnap:q'center:1.6.1075
Qnap » Q'center » Version: 1.7.1063

cpe:2.3:a:qnap:q'center:1.7.1063

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0708

Products

Pricing

Contact Us